Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 1 subscriber
  • Views 2178 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Failover IPSEC VPN from internal to external IPs

BSavage
We have our primary hub ASG with Internal adressing on Eth4, and Internet addressing on Eth1. Our remote Astaro has same setup, with Eth1 on the internal IP addressing, and Eth2. We currently only have the One IPSEC tunnel configured over the private IP link, with the hub side at respond only, but would prefer failover to the external link. I'm not sure if I can do this with the one IPSEC config, can I? 

Can I use the Availability groups on jsut the remote ASG's IPSEC gateway config along with the failover/uplink option? I'm not familiar with using the availability group in the IPSEC gateway, and don't want to set this up incorrectly. Thanks

Brian


This thread was automatically locked due to age.
Parents
  • 0
    I don't know if it will make any difference with one side in "Respond only."  In any case, since you know all of the IPs, there's no reason not to make both sides "Initiate connection."

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    I don't know if it will make any difference with one side in "Respond only."  In any case, since you know all of the IPs, there's no reason not to make both sides "Initiate connection."

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data
Cookie Information Banner