Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 1 subscriber
  • Views 1711 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Bind Interface für Site-to-site VPN

dextha1
Hi,
i use Site-to-site VPN (SSL) and want to bind one (faster) Uplink-Interface for this connection. When this interface goes down, UTM9 should not use the second Interface for VPN. Is this possible?

Regards, Dex


This thread was automatically locked due to age.
  • 0
    You can't select an interface for SSL VPNs as far i see.

    Not sure if you can create a multipath rule (by Interface), but deselect "Skip rule on interface error". For IPsec, if i remebmber right, MP Rules don't work.

    Manual:
    Skip rule on interface error: If selected, in case of an interface failure, the next matching multipath rule will be used for the traffic. If unselected, no other multipath rule will be used for the defined traffic in case of an interface failure. This for example makes sense when you want to ensure that SMTP traffic is only sent from a specific static IP address to prevent your emails from being classified as spam by the recipients due to an invalid sender IP address.
  • 0 in reply to UrsWeiss
    That also was my idea.. but the UTM take any, though i define a multipath rule :-(
  • 0
    Hi, and welcome to the User BB!

    On the 'Settings' tab in 'SSL VPN', you can replace "Any" with "External (Address)" or any other.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Unfiltered HTML