Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 2 replies
  • Subscribers 4 subscribers
  • Views 5180 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos UTM DynDns Update working in case of Uplink Change?

seroal

Hi,

it´s just a question, if that will work:

 

I will have an utm with one main fixed line. As a secondary gateway we have a 4G Backup Router, providing internet access to the utm. This should be only a Standby "Uplink", when the primary stops working.

 

Because we want to connect at least one branch with RED, configured with DDNS Hostname, I would like to know, if that will work? Here are some informations, so I assume, it will work: https://community.sophos.com/kb/en-us/118457

"If there is an interface failure, open VPN tunnels can be automatically re-established over the next available interface provided DynDNS is used or the remote server accepts the IP adresses of all uplink interfaces. As a prerequisite, the IPSec rule must use the Uplink Interfaces as Local Interface."

 

Does somebody has real live experience? I configured DDNS with using the webservice option. I think that´s necessary, because the network to our 4G Backup Router is a private one....

 

Thanks,

Sebastian



This thread was automatically locked due to age.
  • +1

    Hi Sebastian,

    If you refer the deployment scenarios section in the Sophos RED Technical Training Guide then it is possible to configure UTM in a failover mode. It should work.

    Thanks

  • 0 in reply to sachingurung

    Hi Sachin,

     

    thanks for the link, this actually doesn´t answer my question 100%. My question is, when Im using only one entry, a ddns name only, if that would also work as a failover. The utm should update the ddns name, after the primary utm interface goes down.

     

    In the kb article you pasted, the procedure is described as follows:

     

    Unable to reach UTM (or connection lost). The internet connection may be having difficulties, or the remote UTM may have gone offline. RED will keep retrying until the connection returns.

     

    But this the article doesn´t mention, how this exactly works. Does the red always make a dns request, or how is it´s dns caching behaviour?

     

     

    BR

    Sebastian