This article explains how to create and use Availability Groups on Sophos UTM. The following sections are covered:
Applies to the following Sophos products and versions Sophos UTM
Availability Group: A group of hosts and/or DNS hosts sorted by priority. Alive status of all hosts is checked with ICMP pings at a specified interval and the host with the highest priority and an alive status is used in configuration.
If one network pipe to the internet fails or connection to a server fails, the backup connection takes over providing minimal impact to network connectivity and services.
Example 1- 2 servers with redundancy: Server A: 126.96.36.199 Server B: 188.8.131.52
When Server A: 184.108.40.206 is "alive" then the ASG will use that IP address for the definition. If Sever A: 220.127.116.11 "dies" or has a connection loss then the UTM will switch to Sever B: 18.104.22.168 causing minimal impact to the network.
Redundancy with vpn: With VPN connections, it’s a similar setup and response as if these were servers in the example. If you have the same 2 servers and both of them is set to accept VPN connections from the UTM, then when the first one fails, the other one will come up again reducing the impact or loss to VPN services.
If you've spotted an error or would like to provide feedback on this article, please use the section below to rate and comment on the article. This is invaluable to us to ensure that we continually strive to give our customers the best information possible.
Every comment submitted here is read (by a human) but we do not reply to specific technical questions. For technical support post a question to the community. Or click here for new feature/product improvements. Alternatively for paid/licensed products open a support ticket.