Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 5 replies
  • Answers 1 answer
  • Subscribers 39 subscribers
  • Views 2021 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How do I assign certain routes to each of my interface ?

J Thai

Hello everyone,

Sorry for being a noob here. I have the following network map layout:

I use a dual-WAN bandwidth aggregation configuration rather than a failover one for most of the interfaces. However, I look forward to:

  • Assign my TrueNAS server (VLAN 9) to only use WAN 1 in regular cases and only use WAN 2 as a backup line.
  • Assign my CCTV DVRs (VLAN 17) to only route through WAN 1.

How may I achieve these goals ? Thank you very much everyone.



This thread was automatically locked due to age.
Parents
  • 0

    Hello!

    You can use SD-WAN Rules to route the traffic as you which, such as doing fail-over or even use SLA - to manage traffic for both WAN's. (SD-WAN Rules based on SLA is currently only available in v19, but since you're a home user I recommend you to update to v19 EAP 2.)

    You can find more information at the Docs, there's enough explanation on how It works and the basics of It. (And some examples too) => https://docs.sophos.com/nsg/sophos-firewall/19.0/Help/en-us/webhelp/onlinehelp/AdministratorHelp/Routing/SDWANPolicyRouting/index.html

    Thanks!

    If a post solves your question use the 'Verify Answer' button.

    Ryzen 5600U + I226-V (KVM) v20 MR1 @ Home

    XG 115w Rev.3 8GB RAM v19.5 MR3 @ Travel Firewall

  • 0 in reply to Prism

    Thank you for your reply. I have some questions to ask around this:

    1. Do I have to create 2 SD-WAN rules: One for inbound traffic and another for outbound for each objective ?
    2. Does it involve messing with scary-sounded things like OSPF, RIP, BGP, etc. ?
    3. Can I also apply certain SD-WAN policies to the VPN functionality ?

    Thank you very much again buddy. 

    HP T620 Plus @ Sophos XG v19.5.3 MR3 - Build 652.

  • +1 in reply to J Thai

    1) Only for outbound traffic.

    2) No.

    3) Yes, for both IPsec and SSLVPN.

    If a post solves your question use the 'Verify Answer' button.

    Ryzen 5600U + I226-V (KVM) v20 MR1 @ Home

    XG 115w Rev.3 8GB RAM v19.5 MR3 @ Travel Firewall

Reply
  • +1 in reply to J Thai

    1) Only for outbound traffic.

    2) No.

    3) Yes, for both IPsec and SSLVPN.

    If a post solves your question use the 'Verify Answer' button.

    Ryzen 5600U + I226-V (KVM) v20 MR1 @ Home

    XG 115w Rev.3 8GB RAM v19.5 MR3 @ Travel Firewall

Children
Unfiltered HTML