Hi,
I currently have a site-to-site vpn tunnel set up between a Sonicwall (" MainOffice") and Sophos ASG120 ("BranchOffice"). This is running fine, so I know the basics of connecting a Sophos to a Sonicwall. Originally, both locations only had one ISP at each location. The MainOffice location now has a 2nd internet connection. I want to set up a redundant site-to-site vpn so that if the primary ISP at MainOffice goes down, the tunnel will automatically switch over to the secondary ISP.
If both sites had Sonicwalls, it is easy, just go into the VPN policy and specify an "IPsec Secondary Gateway Name or Address". However I am not sure what the proper way is to set this up in a Sophos. (The Sophos has one WAN connection and the Sonicwall has two WAN connections)
Do I just set up two sets of Remote Gateways, and two sets of IPsec connections in the Sophos? Should these point to a single VPN Policy setup in the Sonicwall or should there be two sets of VPN policies? If the latter, will there be any kind of routing or loopback type problems if I have two separate VPN tunnels up at the same time between a Sophos and a Sonicwall?
Screenshots of Sophos setup are included. Does this look correct?
Thanks for any advice.
Andrew
This thread was automatically locked due to age.
Guest User!
You are not Sophos Staff.
