I have a client with an existing site-to-site VPN using a pair of SSG5s, one in their local office and the other in a DataCenter in Chicago protecting a few Servers. What I need to do now is add another VPN leg from the Main office to a new bidding office in another city. The problem stems from the fact that this new office is currently on a dynamic IP Cable service and so the VPN has to be Dynamic to the home office. How do I protect traffic from the remote office through the main office to the Datacenter? Done a bit of reading and see the NHTB feature, but I've found that if the dynamic tunnel goes off line, traffic between subnets on the original tunnel stops, and that won't fly.
Any ideas on where to look?
Any ideas on where to look?