Thread Info
  • State Suggested Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 4 replies
  • Answers 1 answer
  • Subscribers 28 subscribers
  • Views 6462 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

IPSec VPN tunnel with backup Route

GernotMeyer

Hi,

I have a Site2Site Tunnel (XG in branch, UTM in Headquarter). Both actually patched.

Branch has a main internet line (which I use for Site2Site tunnel) but also a backup line (with an alternative IP Adresse).

Is it possible to setup the Tunnel to use the second Internet line if the first line failes?

The XG is connected to the internet with one line using a transfer net (so it is a NATed address).

Any hints?

 



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to LuCar Toni

    Is it possible to do an active/active IPSec over two WAN links for Branch and HQ ?

  • 0 in reply to Omer Fatehur Rahman

    As far as i know, this is not possible. 

    Most of the time, this will not archive the expected solution. I only can think of a active / active solution without a link combination. So basically it will only attach the connections to one of both tunnels. 

    You could try to archive such a construct, never have tried it before. 

    __________________________________________________________________________________________________________________

  • 0 in reply to LuCar Toni

    Sorry for late answer.

    We tried following that articel and figured out one different prerequisit.

    We have only one interface on the Sophos available that is connected via 2 ISPs.

    So the transfer net between Sophos and the 2 Internet routers is like this:

    Sophos ext interface is 10.10.10.10/24

    ISP1 internal is 10.10.10.1 and

    ISP1 internal is 10.10.10.2.

    Both connected to the same Sophos port.

    Any idea how to deal with this?

     

Cookie Information Banner