Cisco – redundancy inter-device (stateful failover for IPSec)

redundancy inter-device

To enter inter-device configuration mode, use the redundancy inter-device command in global configuration mode. To exit inter-device configuration mode, use the exit command. To remove all inter-device configuration, use the no form of this command.

redundancy inter-device

no redundancy inter-device

Syntax Description

This command has no arguments or keywords.

Defaults

If this command is not enabled, you cannot configure stateful failover for IPSec.

Command Modes

Global configuration

Command History

Release

Modification

12.3(8)T

This command was introduced.

Usage Guidelines

Use the redundancy inter-device command to enter inter-device configuration mode, which allows you to enable and protect Stateful Switchover (SSO) traffic.

Examples

The following example shows how to issue the redundancy inter-device command when enabling SSO:

redundancy inter-device

scheme standby HA-in

!

!

ipc zone default

association 1

no shutdown

protocol sctp

local-port 5000

local-ip 10.0.0.1

remote-port 5000

remote-ip 10.0.0.2

!

The following example shows how to issue the redundancy inter-device command when configuring SSO traffic protection:

crypto ipsec transform-set trans2 ah-md5-hmac esp-aes

!

crypto ipsec profile sso-secure

set transform-set trans2

!

redundancy inter-device

scheme standby HA-in

security ipsec sso-secure

via Cisco IOS Security Command Reference – reauthentication time through rsa-pubkey  [Support] – Cisco Systems.

This entry was posted in Cisco. Bookmark the permalink.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s