What is the best way to configure VPN connectivity between 2 sites (1 is NSX based and other is physical firewall)?
Scenario (Current Configuration):
- Site 1
- 2 IPSec VPN Configuration configured as a Primary and Backup
- Primary goes to corresponding Site 2 Internet Provider 1 Public IP
- Backup goes to corresponding Site 2 Internet Provider 2 Public IP
- Site 2
- 1 physical Firewall with 2 different WAN (2 different Internet Providers)
- 2 different Public IP
- 2nd Internet provider is a standby provider
- VPN Configuration is setup to fail/roll to backup link if primary fails
Currently it is a manual process to disable Primary VPN in NSX and enable Backup, wanted too see if there was a better approach like using Certificate or different method?