Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 5 replies
  • Answers 1 answer
  • Subscribers 3 subscribers
  • Views 5077 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Uplink Balancing not switching back to higher priority Interface

Daniel Schatz

Hi,

i have two UTM 9.408-4 in HA mode in one of our branch offices.

this office has 2 WAN Uplinks (1 fibre and 1 LTE for backup).

i just need the LTE-WAN for backup if the main fibre goes down.

the failover to LTE works, but the connection never switches back to the main WAN uplink (when it is up again).

check the screenshot for my config. what did i miss?

best regards,

Daniel



This thread was automatically locked due to age.
Parents
  • 0

    Hi, Daniel, and welcome to the UTM Community!

    That looks good to me, so I would have to suspect your ISP's equipment.  Does making the change recommended in #7.7 in Rulz resolve this issue?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    Hi Bob and thanks for your answer.

    no, rule #7 does not resolve the issue. but i have noticed that the UTM doesnt recognize when the WAN connection is back online.

    i have email alerts enabled for "internet uplink up/down".

    in this particular case the UTM never reported "internet uplink is up again", even if it was.

    i have automatic monitoring enabled, maybe i should try to use my own monitoring hosts.

    for now i put the WAN-LET to standby-interfaces, to avoid the UTM use it as main WAN uplink.

    not a sexy solution but a workaround.

    regards

Reply
  • 0 in reply to BAlfson

    Hi Bob and thanks for your answer.

    no, rule #7 does not resolve the issue. but i have noticed that the UTM doesnt recognize when the WAN connection is back online.

    i have email alerts enabled for "internet uplink up/down".

    in this particular case the UTM never reported "internet uplink is up again", even if it was.

    i have automatic monitoring enabled, maybe i should try to use my own monitoring hosts.

    for now i put the WAN-LET to standby-interfaces, to avoid the UTM use it as main WAN uplink.

    not a sexy solution but a workaround.

    regards

Children
  • 0 in reply to Daniel Schatz

    "... i have noticed that the UTM doesnt recognize when the WAN connection is back online."

    This is exactly the reason for avoiding auto-negotiation as described in #7.7.  It would confirm my guess if your ISP doesn't see the UTM as offline.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Unfiltered HTML