We'd love to hear about it! Click here to go to the product suggestion community
I know how to use More than 1 gateway for VPN failover . but i have strange issue with Site to site VPN . i am using two different gateways and sometimes the VPN disconnect and what ever i do it never restore the connection unless i wait almost 15 minutes to reconnect using same gateway . the only fix it to switch the vpn gateway to use the second gateway .
put in mind that both gateways are connected to the Internet and online and this issue happen while both gateways are online . dpd is enabled
so the only fix i am thinking about is to monitor an IP in the end of the VPN tunnel and switch the gateway for the vpn connection once that IP fail to ping
so can anyone help in this ?
PS: i couldn't find any useful info in the logs .
Are you using the same settings for both connections? What firmware version are you running?
In reply to S248:
yes same settings and i tried all FW starting from 16 till latest and the only stable version is 16.05.9 MR-9
In reply to MoMx:
any one knows how to change the VPN GW using CLI ? for version 16.05.9 MR-9
Try to use this KBA: https://community.sophos.com/kb/en-us/122999
It should force XG to build up the Connection properly.
Or Update to V17 and use the new VPN Daemon.
In reply to LuCar Toni:
I tried all versions . and the only solution is to switch the gateway . so i am searching for the command to do that so i can script it
switching the gateway mean i manualy edit the vpn config and chose the second gateway then initiate the connection .