so..
Switched from 5525x to 2110 boxes a year ago or so. So far things are okayish - pretty unstable site2sites for some time but i think its okay now after switching from ikev1 to ikev2. No clue why that would change anything but im not too bright on firewalls - more of a wifi guy myself.
Anyways, now im trying to get some redundancy for my two branches who cant get a redundant curcuit from the same isp where they are located.. Hense i need to support two peer ip addresses in the firepower setup at the DC.
Cisco says that:
- ikev2 will most likely never have multipe peer ip support.
- route based vpn isnt ready in 6.3 off the block - which would be where they would be able to support multiple peer ip's in site2sites
Maybe im just a rookie and not too sharp on stuff like this. Can anyone give me some insight in why the lack of ikev2 multi peer support doesnt just get fixed? and 2. why the F*ck cisco doesnt put some damn resources into the ftd software development and gets things flowing.. im a bit puzzled at the moment
No comments:
Post a Comment