[NEBULA] NSG100 LTG Use LTE as backup line at WAN2

Elgen007
Elgen007 Posts: 15  Freshman Member
First Comment First Anniversary
edited April 2021 in Nebula

Hi

I have a NSG100 with fixed internet line on WAN1 and an LTE router which is the backup line on WAN2. The problem is that when I take down the line on WAN1 the VPN will not come up again via the LTE line, when I connect the line at WAN1 again the VPN comes up again after a few seconds.

I have configured WAN1 as primary port and WAN2 as backup line in traffic shaping and set WAN load balanching to Failover.

Any solution to the problem?

H

Olav

All Replies

  • TomorrowOcean
    TomorrowOcean Posts: 60  Ally Member
    First Comment First Answer Friend Collector Seventh Anniversary

    Did you configure Outgoing Interface as "Auto" in site-to-site VPN page?

  • Elgen007
    Elgen007 Posts: 15  Freshman Member
    First Comment First Anniversary

    Yes the outgoing interface is in "Auto"

  • Zyxel_Chris
    Zyxel_Chris Posts: 727  Zyxel Employee
    Zyxel Certified Network Administrator - WLAN Zyxel Certified Network Administrator - Nebula Zyxel Certified Sales Associate 50 Answers

    Hello @Elgen007

    Welcome to the community!?

    I will PM you for the organization privilege please check your Inbox message, thanks.


    /Chris

  • FrankIversen
    FrankIversen Posts: 92  Ally Member
    Ideas master First Comment Friend Collector Third Anniversary
    We are doing the same exervice at a customer later this week.
    This is a supported configuration? with a secondary wan which should failover?
    how is the failover policy? will it kick to wan2 only if we miss the link on the wan1 interface or is there a ping policy on the wan1 interface?
  • Zyxel_Chris
    Zyxel_Chris Posts: 727  Zyxel Employee
    Zyxel Certified Network Administrator - WLAN Zyxel Certified Network Administrator - Nebula Zyxel Certified Sales Associate 50 Answers
    The failover mechanism is once the link status has changed (ex: link down) then it will move to another WAN interface.
    Or it can work with WAN load balancing algorithm (Failover) in traffic shaping,once the ping fail it will also use another WAN interface.




  • Pook
    Pook Posts: 143  Ally Member
    First Comment First Answer Friend Collector Nebula Gratitude
    You will need to take a note of the Public IP obtained via 4G, then manually add the IP in the NAT traversal section under Security Gateway>Configure>Site to Site VPN. Just remember to remove once WAN1 is back up :-)

Nebula Tips & Tricks