Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Ravindra_Yadav
Participant

MPLS to IPSEC failover in 80.30 with Cisco ASA as remote end device

Hi Team,

I have a scenerio where I want to achieve failover between IPSEC vpn and MPLS traffic terminating on the same remote end Cisco ASA device. MPLS will act as primary and when MPLS link fails, traffic should failover to IPSEC vpn.

Is there any way to achieve this between checkpoint & Cisco ASA. Your suggestions would be highly appreciated.

I heard that there is a feature in R80.30 to achieve this.

Regards,

Ravindra

0 Kudos
3 Replies
Wolfgang
Authority
Authority

Ravindra,

your solution is found in How To Create a Redundant, Service-based MPLS/Encrypted Link VPN

Wolfgang

0 Kudos
Ravindra_Yadav
Participant

I guess this will work when I have Checkpoint Gateway at both the ends. I have Cisco ASA at the other end.
0 Kudos
Wolfgang
Authority
Authority

Ravindra,

Dead Peer Detection is the technology for the remote peer check with third party devices and that's why you need R80.30.

###### snip from R80.30 what's new ############

IPsec VPN

  • Redundancy for Multiple Entry Points configuration using Dead Peer Detection (DPD) with third party VPN peer

######end  snip from R80.30 what's new ##########

Wolfgang

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events