Home
Support
Product Support
Cloud and Systems Management
Cisco IoT Field Network Director
Install and Upgrade Guides

Oracle-Based Deployment Guide for Cisco IoT FND, Release 5.x.x and Later

View all Saved Content

PDF

Is this helpful?

Helpful Unhelpful

Feedback

Thank you for your feedback. Your response has been recorded.

Ask about this document

Cisco Configuration Guide, Release 4.2

Table of contents

Expand all sections

About this document

Recommended computing resources

Minimum system requirements
Oracle DB server hardware requirements
Tunnel provisioning servers hardware requirements
Application servers hardware requirements
Obtain Cisco licenses for Oracle DB on Cisco IoT FND
Install the required Linux packages for Oracle database on Cisco IoT FND server
RPM package requirements
Configure the NTP service
Cisco IoT FND ISO image zip file contents
Verify the signature of ISO and RPM images

Certificates

Cisco IoT FND certificates
Types of certificates
Role of certificates
Keystore
Generate and export certificates
Install certificates on Cisco IoT FND and TPS proxy servers

Properties used in Cisco IoT FND and TPS configuration

Install Cisco IoT FND on Oracle DB

Install and setup Cisco IoT FND DB
Install and setup the SSM
Install and set up Cisco IoT FND
Install Cisco IoT FND
Set up Cisco IoT FND
Configure the database settings
Configure the standby DB settings
Configure the Cisco IoT FND DB password
Configure the keystore password
Change the web root user password
Configure the FTPS settings
Run the Cisco IoT FND DB migration script
Access Cisco IoT FND
Cisco IoT FND CLIs
Clean up the Cisco IoT FND database
Cisco IoT FND helper scripts
Cisco IoT FND TPS Proxy
Backup and restore Cisco IoT FND DB

Upgrade Cisco IoT FND

Pre-upgrade checklist
Verifying certificates and system requirements
Upgrade Cisco IoT FND
Upgrade the Cisco IoT FND TPS proxy server
Post-upgrade checklist
Upgrade Cisco IoT FND in HA configuration or clustered mode

HA for Cisco IoT FND

HA for Cisco IoT FND
Restrictions
Solution components
Cisco IoT FND server HA
Load balancer
Load-Balancing policies
DB HA
Set up the Cisco IoT FND DB for HA
Set up the standby DB
Set up the primary DB
Set up the observer
Validate Cisco IoT FND Oracle Database HA
Set up the Cisco IoT FND DB for HA
Disable Cisco IoT FND DB HA
Tunnel HA
HER redundancy
Configure tunnel provisioning policy
Define a policy for mapping interfaces between FAR and HER
FAR tunnel addition template
HER tunnel addition template
FAR redundancy
PKI
Troubleshoot

Tunnel HA

Updated: March 2, 2026

Want to summarize with AI?

On this page

Overview

Dependencies and redundancy options for Tunnel HA

Overview

This topic explains tunnel high availability, including how Cisco IoT FND manages tunnels, the dependencies for tunnel redundancy, and the configuration steps required to ensure reliable tunnel operation in the network.

Tunnel high availability refers to the ability of the network to maintain continuous tunnel connectivity by leveraging redundancy in links, FARs, and HERs.

Tunnels are managed by Cisco IoT FND, but HER is not managed by Cisco IoT FND.
Cisco IoT FND reads and maintains a copy of the configuration made on HER.
Tunnel redundancy depends on link redundancy, FAR redundancy, and HER redundancy.

Dependencies and redundancy options for Tunnel HA

The redundancy of the tunnel source (CGR), the redundancy of the tunnel destination (HER), and the link between HER and FAR over which the tunnel is formed are critical for tunnel redundancy.

The following options are possible for high availability:

Option 1: There can be one FAR, one HER, but more than one link and hence more than one tunnel.
Option 2: There can be one FAR, but more than one link and one HER.

Figure 1. Option 2 Topology

To configure tunnel redundancy at Cisco IoT FND, perform the following steps:

Configure Tunnel Provisioning Policies: Add HER to the tunnel provisioning group and define policies that determine the mapping between FAR and HER (ASR) interfaces.
Modify the Tunnel Provisioning Templates: Use the sample FAR tunnel addition template and HER tunnel addition template as provided.

Note

If a tunnel fails, traffic flows through another tunnel.

Need help?

Open a support case

(Requires a Cisco Service Contract)

Bias-free language

The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.