Thursday, October 4, 2018

IP SLA for packet loss on IPSEC tunnel

I was wondering if people think this is possible. I will attempt labbing this when I have a chance.

There is this design where we have 2 ipsec tunnels going to the same place from the same place. We have 2 beacuse the 2nd one is a backup. Let's say a situation arises where there is packet loss or degraded performance on one of these tunnels to where it either resets the tunnel a bunch of times or just sits there and has bad performance. Is their a way to setup an SLA to monitor from our end to the other end of the IPSEC tunnel to make a switchover incase the tunnels performance is bad?



No comments:

Post a Comment