Thread Info
  • State Verified Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 3 replies
  • Answers 1 answer
  • Subscribers 28 subscribers
  • Views 2371 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

XG Mulipath rules and IPSEC VPN failback

ChristianSchmidt

Hi,

I switched from SG to XG firewall. When I create an IPSEC VPN Connection I can only select one of the two wan ports, not Uplink interfaces as in the SG before.

I want that the IPSEC VPN connection will connect to failover with the second wan connection.

How can I do that?

Second question:

How I find Multipath rules in the XG as in the SG?

I want to make rules which WAN connection should use define Ports and Services.
If the WAN is failing the rule skip and use a other rule for failback.

I use it on the old SG system very well.

best regards

Chris



This thread was automatically locked due to age.
Parents Reply
  • +1 in reply to ChristianSchmidt

    Like mentioned before.

    IPsec Failover works via IPsec Failover groups. 

    https://community.sophos.com/kb/en-us/123305

    Failback is there. So basically the connection will failback after the tunnel is back. 

     

     

    Multipath is basically the same like Firewall Policy "Primary / Second Gateway". 

    You can select one Primary Gateway like interface 1. And Second Gateway "load balancing". So Interface 1 will be used and after interface 1 fails, XG will use the other available interfaces. 

    __________________________________________________________________________________________________________________

Children
No Data
Cookie Information Banner