diff --git a/group_vars/dnagw.yml b/group_vars/dnagw.yml
index 3bffd50..fe380e8 100644
--- a/group_vars/dnagw.yml
+++ b/group_vars/dnagw.yml
@@ -12,6 +12,18 @@ network_vip_interfaces:
     netmask: 255.255.252.0
     pass: "{{ vip10_pass }}"
     priority: 120
+  - device: vio0
+    vhid: 11
+    ipaddr: 172.20.20.11
+    netmask: 255.255.252.0
+    pass: "{{ vip11_pass }}"
+    priority: "{{ vip11_priority }}"
+  - device: vio0
+    vhid: 12
+    ipaddr: 172.20.20.12
+    netmask: 255.255.252.0
+    pass: "{{ vip12_pass }}"
+    priority: "{{ vip12_priority }}"
 network_ether_interfaces:
   - device: vio1
     proto: none
diff --git a/host_vars/dna-gw01.home.foo.sh.yml b/host_vars/dna-gw01.home.foo.sh.yml
index d7c25b9..481ae6c 100644
--- a/host_vars/dna-gw01.home.foo.sh.yml
+++ b/host_vars/dna-gw01.home.foo.sh.yml
@@ -10,3 +10,5 @@ network_interfaces:
   - device: vio1
     vlan: 103
     proto: none
+vip11_priority: 240
+vip12_priority: 120
diff --git a/host_vars/dna-gw02.home.foo.sh.yml b/host_vars/dna-gw02.home.foo.sh.yml
index fae4c34..d9977c7 100644
--- a/host_vars/dna-gw02.home.foo.sh.yml
+++ b/host_vars/dna-gw02.home.foo.sh.yml
@@ -10,3 +10,5 @@ network_interfaces:
   - device: vio1
     vlan: 103
     proto: none
+vip11_priority: 120
+vip12_priority: 240
diff --git a/roles/unbound/templates/unbound.conf.dna-gw01.home.foo.sh.j2 b/roles/unbound/templates/unbound.conf.dna-gw01.home.foo.sh.j2
index 9cd96f8..4765817 100644
--- a/roles/unbound/templates/unbound.conf.dna-gw01.home.foo.sh.j2
+++ b/roles/unbound/templates/unbound.conf.dna-gw01.home.foo.sh.j2
@@ -8,6 +8,10 @@ server:
 
     interface: 172.20.20.10@53
     interface: 172.20.20.10@853
+    interface: 172.20.20.11@53
+    interface: 172.20.20.11@853
+    interface: 172.20.20.12@53
+    interface: 172.20.20.12@853
     interface: 172.20.21.1@53
 
     tls-service-key: {{ tls_private }}/dns.home.foo.sh.key
diff --git a/roles/unbound/templates/unbound.conf.dna-gw02.home.foo.sh.j2 b/roles/unbound/templates/unbound.conf.dna-gw02.home.foo.sh.j2
index de8a3d4..c08d855 100644
--- a/roles/unbound/templates/unbound.conf.dna-gw02.home.foo.sh.j2
+++ b/roles/unbound/templates/unbound.conf.dna-gw02.home.foo.sh.j2
@@ -8,6 +8,10 @@ server:
 
     interface: 172.20.20.10@53
     interface: 172.20.20.10@853
+    interface: 172.20.20.11@53
+    interface: 172.20.20.11@853
+    interface: 172.20.20.12@53
+    interface: 172.20.20.12@853
     interface: 172.20.21.2@53
 
     tls-service-key: {{ tls_private }}/dns.home.foo.sh.key