Creating 2 IPSec tunnels as primary and secondary to a remote office on a Juniper SSG-320M
2 weeks ago
I have a Juniper SSG-320 FW. I would like to create to IPSec tunnels to another office. One is primary and the other one is secondary. The remote destination subnet is the same because its an office. If the primary tunnels fails then I want the secondary tunnel to become primary. Is this possible with metrics and does it have to be route based VPN or policy based. See diagram
Re: Creating 2 IPSec tunnels as primary and secondary to a remote office on a Juniper SSG-320M
2 weeks ago
When you have two routes towards the same destination in your routing table given by two different protocols. e.g. Static route and BGP route. and if you want to choose one route as Active, Route Preference can be used to achieve that. Lowest Preference is give the Highest priority.
When you have two routes towards the same destination in your routing table given by the same protocol. e.g. two static routes and if you want to make one as Active, you can use Route Metric. Lowest Metric is given the Highest priority.
Thanks, π00bm@$t€®. Please, Mark My Solution Accepted if it Helped, Kudos are Appreciated too!!!