Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 5 replies
  • Subscribers 27 subscribers
  • Views 4976 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Azure VPN Failover does not return after primary connection comes online

Idriel

Hi,

We have scenario where:

  • Sophos UTM is connected with Sophos XG in Azure
  • Sophos UTM have two internet connections in Active/standby mode
  • Sophos XG Site-to-Site is configured with Failover Group

First step is Ok.

  • When Primary link on UTM goes down, standby becomes active and on XG failover group switch to second VPN.

Second step does not work.

  • When Primary link becomes available site-to-site stops working. For some unknown reason it does not failover back to primary? Anyone have same issues?

Azure Firmware: SFOS 16.05.0 GA



This thread was automatically locked due to age.
Parents Reply Children
  • +1 in reply to Idriel

    HI Idriel, 

    It is by Design, Once the IPsec Tunnel is established it will continue to follow the connection and will not disconnect unless disconnected manually to ensure uninterrupted service. If you wish to use the Primary link , then you  may need to disable the failover and enable again to reset the connection status .