We have several WR21's that terminate to two Cisco ASAs using IPsec. One of the Cisco ASA's is a primary unit and one is a backup unit.
Each WR21 has 4 IPsec ERoutes.
When the cellular signal is poor we end up with 1 or 2 of the Eroutes terminated to our primary ASA and the other ERoutes are terminated to our secondary ASA. This causes a routing problem as our routers aren't sure where to send the traffic.
Is there a way to ensure that all the defined ERoutes get terminated to the same IKE peer and not split?
So if 1 Eroute terminates to our primary ASA then all the Eroutes will terminate to the primary? If one of the ERoutes fails on the primary then all the ERoutes will be terminated on the Backup ASA.