Failover tep – Avaya 3.7 User Manual
Page 218
Using advanced features
218 Avaya VPNmanager Configuration Guide Release 3.7
Failover TEP
Failover TEP is used to protect site-to-site VPN traffic that moves through the public networks.
The endpoints for tunnels are located in SGs. Up to four head-end devices can be configured to
backup a specific security gateway.
Upon completion of the Failover TEP configuration, the VPNmanager will download identical
VPN configuration to the alternate head-end devices. When a remote device fails at the primary
head-end, the alternate head-end device will provide the same VPN services.
The most desirable configuration would include the same devices; however, this is not required
as long as each device has a license to service the number of VPNs configured on the primary
head-end device. For example, if the head-end device is an SG203 and supports 8000 tunnels,
the alternate head-end devices should be SG203 support 8000 tunnels. If the head-end device
is a VSU100, the alternated head-end devices should be VSU100s. For more information
regarding configuring VSUs with a similar Failover TEP configuration, see
Note:
Note:
Beginning with VPNmanager 3.6, Failover TEP is configurable on security
gateways running VPNos 4.5.
Figure 70: The Failover TEP tab for a security gateway object