Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 6 replies
  • Subscribers 29 subscribers
  • Views 1263 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to configure a failover IPSec VPN using Tunnel Interface with 4 Connections?

Rodrigo Silveira2

Hello,

I have the following situation, my Head Office has two ISP Wan links and the Branch Office also has two ISP Wan links and I want to configure a failover this way:


HO            BO
ISP 1 ------ ISP1

ISP 1 ------ ISP2

ISP 2 ------ ISP1

ISP 2 ------ ISP2

So it is going to be 4 connections, when using site-to-site I just had to configure the Failover Group and inform the connections, but how does that work with Tunnel Interface and SD-WAN routing? Because on SD-WAN routing I can only specify the main gateway and a backup one.

Thanks



This thread was automatically locked due to age.
Parents
  • 0

    Shouldnt it be possible to keep all tunnels up at the same time? But in SD-WAN - Its correct, you can use 2 Interfaces at the same time. But you can create two rules behind each other. The Rule will fail, if all Gateways are down within the rule and XG will lookup another rule. 

Reply
  • 0

    Shouldnt it be possible to keep all tunnels up at the same time? But in SD-WAN - Its correct, you can use 2 Interfaces at the same time. But you can create two rules behind each other. The Rule will fail, if all Gateways are down within the rule and XG will lookup another rule. 

Children