Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 2 replies
  • Answers 1 answer
  • Subscribers 26 subscribers
  • Views 807 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SFOS V18 RBVPN Load Balancing

Yemliha Ipek

Hi all,

the following article says that "XG Firewall v18 also supports RBVPN tunnel interfaces for SD-WAN policy-based routes to support IPsec and MPLS co-existence with SD-WAN. This makes it possible to enable IPsec and MPLS (even on a non-WAN zone) to both be active at the same time, with options for load balancing on VPN tunnels as well."

https://news.sophos.com/en-us/2020/08/27/making-the-most-of-xg-firewall-v18-part-6/

But I could not add route based VPN gateway to Wan Link Load Balancing goup. Could you please tell how can I make load balancing between two IPSEC tunnel as mentioned in article?



This thread was automatically locked due to age.
Parents Reply Children
  • FormerMember
    0 FormerMember in reply to FormerMember

    Just adding to what DeveshM said,

    XG firewall load balance the traffic between Active gateways.

    If you only have a single WAN connection and don't want any disruption, then you can change its type to 'Backup' under Network > WAN link manager. If you do so then you need one SD-WAN policy route with the below parameters at bottom.

    Source networks: Local_LAN network or Any
    Destination networks: Any
    Services: Any
    Application object: Any
    User or groups: Any

    Primary gateway: Internet link(WAN link)
    Backup gateway: None

    ==> Create SD-WAN policy route for VPN network on top of above SD-WAN policy.

    Note: This applies only in case if you have a single WAN connection or 2 WAN connections using one as primary and other as backup.

    For 2 WAN connections, you need to select both Primary & Backup gateway in SD-WAN policy route.