This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Dynamic Routing (OSPF) has a lower priority (higher cost) than IPsec VPN

Hi
As attached, you can see a image of our network. The SES connection is our primary and the Cisco Switch A does all the routing including the OSPF. If the SES connection is down we want to route the traffic trough the VPN. The problem is, as soon as we start the VPN tunnel the priority for the VPN is higher (lower cost) then the OSPF and all traffic is going trough the VPN.
Is it possible to change the priority of the VPN or are there any other possibilities (maybe with uplink monitoring to Cisco Switch B trough SES? Maybe a host connected to internal…)
Thank you in advance for you answers
Greetings from Switzerland
Stefan

This thread was automatically locked due to age.

0 BAlfson over 11 years ago

Hi Stefan, and welcome to the User BB!

There might be a way to do this from the command line, but I bet it wouldn't survive a reboot. Please let us know what Sophos Support has to say about your issue.

Cheers - Bob
PS But, I think I'm confused that the Cisco (not the UTM) is doing OSPF, but you think the issue is with the UTM...

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel
0 steff-meier over 11 years ago in reply to BAlfson

PS But, I think I'm confused that the Cisco (not the UTM) is doing OSPF, but you think the issue is with the UTM...

Dear Bob
The problem still exist. we tried after an update to UTM 9.2. The Cisco is doing OSPF, because it is the leading router connected to the WAN. UTM is a VPN backuplink only.
Maybee any ideas?
Greetings Stefan
Cancel
Vote Up 0 Vote Down

Cancel
0 diepes over 10 years ago in reply to steff-meier

Have you played with the interface ospf cost ?
Cancel
Vote Up 0 Vote Down

Cancel