I'm trying configuring SD-WAN based red traffic on a multi-wan'ed xg firewall. The goal is to have red traffic go through a specific wan interface by default and to switch to an alternate wan link upon main link failure. This device is 'client' and is configured to point to the HQ located XG counterpart. I noticed that initial red handshake, on port 3400, goes correctly through selected primary wan link. But after that, udp red v2 traffic on port 3410, takes the alternate way. Looks like there is a static definition of the client XG firewall somewhere indicating the endpoint with a specific public ip address.
To summarize, client XG firewall has 2 wan interfaces, A and B. Provisioning file was created on HQ located xg red server and deployed on client
I need that RED traffic going through WAN interface B and regular user traffic through WAN interface A
I appropriately configured, I hope, an sd-wan rule to have the client xg directing red traffic through interface B.
HQ xg device always shows RED endpoint connected and sourced from interface A public ip address.
From a packet capture session, I can see that, intially, there are port 3400 udp packets routed through interface B. When the red link goes up, I can see udp packets on port 3410 going through interface A.
Any suggestion?
This thread was automatically locked due to age.
