we are using UTM 220 from one year and it is very smart and working good.
We have several remote users that travel around and they need to access their resources from everywhere and anytime.
We need to setup failover vpn in Astaro. We have 3 ISP connections. At the moment Vpn is bound to one ISP address. How can we bound VPN SSL to multiple ISP without manual interventation?
We created a dns public failover named vpn.***x.com that points to 3 ISP Public addresses.
If you have a solution, this one can even work for User Portal.
In remote access -> SSL -> settings you can define which interface is used. Maybe you can select Uplink interfaces so it listens on all interfaces, or you could simply add 2 more configs using the other 2 ISP's interfaces. DNS should take care of the distribution of IP-addresses.
Managing several Sophos firewalls both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.
If no one else have a solution, I try to open a feature request. The port 443 is nice because you can connect to your DC even if you are behind a Firewall(without App. Control). We can even switch to another port, but all the ISP we are going to add, we also need to add their IP address into DNS public zone.
Quote
