Thursday, March 5, 2020

HSRP over GRE/IPsec tunnels?

So I have this small task to implement failover between two routers connecting to a switch that goes to the firewall. I only need a failover solution, load balancing is not needed.

See the drawing below.

https://i.imgur.com/8qiyilz.png

I have configured HSRP but only on the physical interfaces, not subs. Can I use the VIP as the tunnel source and implement tracking pinging the other side of the tunnel?

What happens if mid transfer the first router link goes down and HSRP switches to the other router, do the packets go in a black hole?

Thanks!



No comments:

Post a Comment