Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 27 subscribers
  • Views 578 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos SSL VPN - Provisioning File with Multiple WAN Failover error

Vignesh Kumar

I have configured a Sophos provisioning file with the following format. I have 2 WAN interface and i want to have the remote users equally distributed among 2 WAN interfaces. But When i import the provisioning file and connect, it skips Gateway1 and directly connects to Gateway2 for all users.. If Unplug gateway_2 from firewall port, the sophos connect still tries to reach Gateway2 and times out after some time. What am missing here? It should automatically switch over to another gateway, but it isn't the case with me.

Kindly help!!!!!!

[
{
"display_name": "XG-VPN",
"gateway_order": "distributed",
"gateway": [ "Gateway1<IP>", "Gateway2<IP>" ],
"user_portal_port": <portnumber>,
"otp": false,
"can_save_credentials": false,
"check_remote_availability": false,
"run_logon_script": false
}
]



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to Robert Glenn

    Hi Robert,

    Thanks for your response.

    Please find the attached snapshot. If i connect separately with Edited remote gateway with .ovpn file its connecting to both WAN IPs. The issue is only with the provisioning file, its not automatically failing over to the other wan in case of one Gateway is down.

    One weird thing i observed on other articles related to this issue was Sophos is taking the primary gateway for SSL VPN in this manner- The last updated gateway with the least priority. Which means if I modify a gateway it will be always forced as a secondary gateway until i modify another gateway and that becomes secondary and this first modified will become primary.

    But I want to setup a VPN config in which both gateways are equally distributed, but its not working in my case.. Kindly help

Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?