Hi all
I have a site where the XGS2100 is currently set to authenticate against the local AD Domain Controller. The DC is planned to move off-site and so the XGS will need to authenticate to the DC via IPSEC - the DC will be hosted behind an OpnSense firewall in the new location. I have followed the guide here (Route system-generated authentication queries through an IPsec tunnel - Sophos Firewall) and can successfully reach the DC. The catch is that the XGS has 2 internet connections with IPSEC set up with a Failover group, and the XGS must be able to reach the DC via either of the IPSEC tunnels. How can I achieve the desired outcome here?
Added TAGs
[edited by: Raphael Alganes at 9:16 AM (GMT -8) on 6 Dec 2023]
