Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 7 replies
  • Answers 2 answers
  • Subscribers 27 subscribers
  • Views 5365 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How does WAN link manager failover rules work?

S248

Under the WAN link manager Failover Rules, you can choose "AND" or "OR". If you have 3 rules, how does AND OR work?

 

Example 1:

Not able to ping 1.1.1.1 OR

Not able to ping 2.2.2.2 OR

Not able to ping 3.3.3.3

 

Example 2: 

Not able to ping 1.1.1.1 AND

Not able to ping 2.2.2.2 AND

Not able to ping 3.3.3.3

 

What happens in each example if 1.1.1.1 is unreachable by the XG? Will the gateway be considered down or will all 3 IP addresses need to be unreachable before the gateway is considered down?

I have been told for example 1 all 3 IP addresses need to be unreachable for the gateway to be down. But that doesn't sound right. Can anybody confirm?



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to LuCar Toni

    Sophos support advised me of the opposite to the above. I don't know who to believe.

  • 0 in reply to S248

    Lucar is definitely correct, this follow the normal logical functions of AND/OR as he explained. 

  • 0 in reply to MasterRoshi

    I've now had 2 people from Sophos support both assure me the opposite of Lucar Toni's example. I'm going to set up a lab and test both to see what actually happens with both scenarios.

  • 0 in reply to S248

    actually it is super easy to reproduce this. 

     

    And there are some changes in the behavior.

     

    Basically the OR means, the XG will only try the first gateway. 

    If the first fails, it will try the next one, if this one fails, it will try the next one. 

     

    Example one: 

     

    XG will only try to ping 8.8.8.8 - it will leave 8.8.4.4 and 1.2.3.4. 

    (1.2.3.4 is offline / not reachable).

    Gateway is consider as UP. 

     

     

    Changing all operators to AND:

    Gateway is down, because XG is trying to reach all Gateways at the same time. 

     

     

     

    Thats for a "custom gateway".

     

    Now lets take a look at the predefined gateway.

     

     

    Gateway is considered as "UP".

    XG will only ping the first gateway. 

     

     

    OR: 

    Gateway consider as "DOWN".

    Because XG cannot Reach 1.2.3.4.