Auto-disabled policy route via vpn-tunnel
Options
Master Member
Hello again.
We want configurate failover access to some address in internet via 3g USB Modem on remote sites, if ipsec don't connect.
Usually we use 1 or 2 providers vpn, build failover ipsec vpn, and all traffic from remote site goes to central site.
Now we want add 3g USB Modem.
I want do it by 2 policy routes
All from site to vpn-tunnel with auto-disable if ipsec don't connect, with number 1,
To some address via USB modem with number 2
First rule higher, so it use for all traffic, but if ipsec fall, it disables and work only rule 2 to some address.
But auto-disable for policy routes via vpn-tunnel not available.
How we can realize this scenario?
We want configurate failover access to some address in internet via 3g USB Modem on remote sites, if ipsec don't connect.
Usually we use 1 or 2 providers vpn, build failover ipsec vpn, and all traffic from remote site goes to central site.
Now we want add 3g USB Modem.
I want do it by 2 policy routes
All from site to vpn-tunnel with auto-disable if ipsec don't connect, with number 1,
To some address via USB modem with number 2
First rule higher, so it use for all traffic, but if ipsec fall, it disables and work only rule 2 to some address.
But auto-disable for policy routes via vpn-tunnel not available.
How we can realize this scenario?
0
Accepted Solution
-
Hi @alexey,
The function "Disable policy route automatically while Interface link down" is available for interface and trunk only.
For VPN tunnel, you can use VTI interface to establish VPN and configure VTI trunk for policy route.
5
Zyxel Employee
All Replies
-
Hi @alexey,
Can you share your configuration file with us?
I'd like to check the configuration on VPN and policy route.
You can send the configuration file to me via private message.
0 -
Hi Emily.
Send config file in private message.0 -
Hi @alexey,
The function "Disable policy route automatically while Interface link down" is available for interface and trunk only.
For VPN tunnel, you can use VTI interface to establish VPN and configure VTI trunk for policy route.
5
Categories
- All Categories
- 397 Beta Program
- 2.1K Nebula
- 116 Nebula Ideas
- 78 Nebula Status and Incidents
- 5.1K Security
- 52 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 70 Switch Ideas
- 907 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 211 Service & License
- 332 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 880 Nebula FAQ
- 415 Security FAQ
- 221 Switch FAQ
- 195 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 137 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 72 About Community
- 63 Security Highlight
