Wireless Access

 View Only
last person joined: 8 hours ago 

Access network design for branch, remote, outdoor, and campus locations with HPE Aruba Networking access points and mobility controllers.
Back to discussions
Expand all | Collapse all

VPN Controller Redundancy Solution Needed

This thread has been viewed 0 times

  • 1.  VPN Controller Redundancy Solution Needed

    Posted May 03, 2017 02:34 PM

    Hi Everyone,

    I am working on a PoC lab.  I have a 7010 controller with a VPN connection over an ISP to a 7220 RAP controller.  This is not a branch config.  Just a standard VPN configuration both controllers are masters.  AOS 6.5.0.2

    Behind the RAP controller is my corporate network.  I have static routes on the Cisco LAN switches for the VPN controller pointing to the RAP controller.  The RAP controller has static routes as well pointing to the VPN tunnel.

     

    I have multiple RAP controllers and I could purchase a secondary ISP connection if needed.  I also know I can build multiple VPN connections to different RAP controllers.  I am looking for some redundancy and most efficient routing of traffic.  

    Is there a way for me to setup dynamic routing and failover so I can have at least two VPN tunnels to the remote VPN site?  As it stands right now I would have to have the static routes on the Cisco LAN manully moved.  Any advice please?



  • 2.  RE: VPN Controller Redundancy Solution Needed
    Best Answer

    EMPLOYEE
    Posted May 03, 2017 02:48 PM

    In general if you want dynamic routing, you should configure OSPF between those controllers and your infrastructure.



  • 3.  RE: VPN Controller Redundancy Solution Needed

    Posted May 11, 2017 08:00 AM

    Thanks I was expecting OSPF to be the responce I just wanted to make sure I wasn't missing anything else I hadn't been made aware of yet.