04-21-2025 08:26 AM
Hello,
Mostly just need a sanity check on this configuration.
I am setting up a backup internet for one of our hub sites as a failover.
Currently the connection to the other primary sites is via a IPsec tunnel using iBGP to pass routes between the "Hub" sites as well as redist into OSPF for internal traffic and routing to spokes.
The External VR has a default route to the primary ISP with path monitoring set to metric 10, and a second default route to the backup ISP on metric 100.
I have created new tunnel interfaces, ike gateways and ipsec tunnels on both sides for the backup internet connection under a different subnet
I am adding the second tunnel to the same Peer groups (one for each Hub Connection).
From my understanding I shouldn’t need to worry about adjusting the new peers AS, MED, etc. in the peer groups as only one of the sessions could be alive at any given time due to the external routers default route metrics.
Am I missing anything here, and even through I shouldn't have to set the new peers to only be used as a failover connection in BGP should I do it anyway?
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
