Hi Sophos Community,
I want to achive the following:
Branch Offices (BO) connected to our Head Office (HO) should be able to use redundant paths for internal Traffic (active passive, no loadbalancing). We would have up to 2 seperate route based VPN connections through 2 different WAN links and 1 MPLS connection. MPLS and VPN all are connected via transfer networks where I could easily test for availability of the next hop. I would like to define a primary, secondary and eventually tertiary route. BO and HO firewall need to switch the used route automatically after the primary link fails and preempt back to primary once the link is live again. To prevent asynchronous routing, this should happen on both ends in a very short timeframe.
Pretty much something like this:
Is it still the case, that I can not achive this by the simple use of a higher metric?
I found the following article speaking of availabilty groups, that would pretty much do what I need but this was on UTM and does not seem to exist on XG: https://support.sophos.com/support/s/article/KB-000034960?language=en_US
Which approach would you recommend to achive my goal and how can I configure it on XG v18?
Thank you very much in advance, your assistance is appreciated!
Kind regards,
David
This thread was automatically locked due to age.
