Hi,
i tired to setup IPSEC as backup for the MPLS link, so i made all the config in Branch Office device & i kept Head Office device with the default config.
This is my Branch Office Devis config:
console> system link_failover show
Interface Tunnel Protocol Host Port Tunnel-Type
Port2 SEIGE_IPSEC PING 172.16.160.254 0 ipsec
console> system route_precedence show
Routing Precedence:
1. Static routes
2. VPN routes
3. Policy routes
console> show network static-route
Destination/Netmask Gateway Metric Interface
===================================================================
172.16.160.0/255.255.252.0 10.16.40.1 0 Port2
172.16.160.254/255.255.255.255 10.16.40.1 0
When the MPLS link get down, both sites start using IPSEC after 60 sec and everything works like expected.
But when i bring back the MPLS link, the brach office device start using MPLS link in opposite the Head office device keep using IPSEC link.
So i tried to made the same config on Head office device, after that the device start using MPLS when the link get up again.
My question: Do i have to configure both devices for IPSEC as failovers or only configure one device ( in case i made a mistake ) ?
Thanks.
This thread was automatically locked due to age.
