Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 1 reply
  • Subscribers 27 subscribers
  • Views 2980 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

LAN Gateways in ovpn configuration

vanbovene

Hi all,

I have SSL VPN running fine.

In the OpenVPN configuration file I've downloaded from the user portal I have 5 servers listed. Can anyone explain why?

The relevant part:

remote 59.x.x.x 8443
remote 119.x.x.x 8443
remote 172.16.16.100 8443
remote 10.x.x.x 8443
remote 10.3.3.1 8443

 

remote 59.x.x.x 8443  (this is my backup WAN gateway, why is it first, does it matter?)
remote 119.x.x.x 8443 (this is my active WAN gateway, second?)
remote 172.16.16.100 8443 (this is Port 1 and in the LAN zone, how did it get here?)
remote 10.x.x.x 8443 (this is Port A1 on the Flexi module - main uplink for my LAN)
remote 10.3.3.1 8443 (this is a VLAN gateway, one of 50. Why is this one here?)

 

Thanks for any advice.



This thread was automatically locked due to age.
Parents
  • 0

    in SFOS 17.1.1 MR-1 the selections in the administration >> device access screen combined with network interface zone membership determines which interface ip's get populated in the ssl vpn client config.  Regarding the ordering of the ip's in the client config,  my theory is that it's based on xg interface port# from low to high which is not ideal in dual or multi wan environments.  It's great the generated openvpn config file available from the :443 user portal  automatically has all the interfaces this way but I'd like to know how to control the order in some way other than asking users to edit this file after generation or reconfiguring and recabling physical interfaces to the desired order.

Reply
  • 0

    in SFOS 17.1.1 MR-1 the selections in the administration >> device access screen combined with network interface zone membership determines which interface ip's get populated in the ssl vpn client config.  Regarding the ordering of the ip's in the client config,  my theory is that it's based on xg interface port# from low to high which is not ideal in dual or multi wan environments.  It's great the generated openvpn config file available from the :443 user portal  automatically has all the interfaces this way but I'd like to know how to control the order in some way other than asking users to edit this file after generation or reconfiguring and recabling physical interfaces to the desired order.

Children
No Data