Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 7 replies
  • Subscribers 2 subscribers
  • Views 2549 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Uplink Balancing / Multipath: No Fallback

Xavier2
Hi

ASG220, UTM9 (9.106-17) with two WAN-Interfaces
Uplink Balancing:
Interface1: Weight 100 
Interface2: Weight 0
Persistence Timeout: 1min (smallest possible)

Multipath Rule:
All Services from Internal LAN to Internet IPv4 balanced to just Interface2
with persistence by connection.

In normal operation (both interfaces up) all traffic goes through Interface2. Ok.
With Interface2 disabled all traffic goes through Interface1. Fine too. ;-)

But after Interface2 comes up again some traffic doesn't move back to Interface2, i.e. pings continously sent don't move back.
Why that? There's no connection with ICMP that could be persistent!?

Even worse, traffic from UTM's VoIP-Gateway doesn't move back too.

Best regards
Xavier


This thread was automatically locked due to age.
Parents
  • 0
    Hi Bob,

    adding a Any->Any->Any traffic to Interface1 as last rule was a succes concerning SIP UDP datagramms. They fall back to Interface2 almost immediately after its up again.

    So thanks for your advice.

    But unfortunately ICMP Pings don't fall back. 
    I just discovered that it even takes quite a long time before they fall over to Interface1 when Interface2 is shut down. The UTM answers with 'Host Unreachable' for almost half an hour before UTM uses Interface1 and the pings go through again (Interface1).

    SIP UPD immediately fall over and back although they're sent with almost same frequency.

    During all experiments persistence by connection was set to 1min.

    Xavier
Reply
  • 0
    Hi Bob,

    adding a Any->Any->Any traffic to Interface1 as last rule was a succes concerning SIP UDP datagramms. They fall back to Interface2 almost immediately after its up again.

    So thanks for your advice.

    But unfortunately ICMP Pings don't fall back. 
    I just discovered that it even takes quite a long time before they fall over to Interface1 when Interface2 is shut down. The UTM answers with 'Host Unreachable' for almost half an hour before UTM uses Interface1 and the pings go through again (Interface1).

    SIP UPD immediately fall over and back although they're sent with almost same frequency.

    During all experiments persistence by connection was set to 1min.

    Xavier
Children
No Data