Hello
For a customer i have a HA system with two internet connections, one DSL, one Cable. Uplink balancing is enabled and configured.
First, what's the best practice to setup the VPN so it will be restored on the second uplink on a failure?
Normally i'm creating VPNs over ACC. But looks like ACC does not shows the "Uplink Interfaces" object for the "Tunnel Interface". If i do it manually i can select the "Uplink Interfaces" for "Local Interface". Is that the way to do it correctly? No way to do it with ACC?
Second, i would like split the traffic over the two uplinks. One (defined) uplink should only be used für VPN traffic, and the other one for all other traffic. As long there is no failure of course.
My idea, which i unfortunately couldn't test yet, is to set the weight of the uplink balancing for the VPN line to 100 and the one for all other traffic to 0. Then set up a multipath rule (Source: Internal / Service: Any / Destination: Any External) with the "Interface persistence" set to the "by Interface" and selecting the interface with the weight of 0 as the "Bind Interface".
What do you think? Should that work? Any other/better solution?
Thank you
Urs
This thread was automatically locked due to age.
