16
General Discussion / Re: Multi-Wan VPN Failover
« on: November 29, 2019, 09:23:25 pm »
I just noticed that Pase 1 of IPSEC has an option I have not seen before.
Dynamic Gateway: Allow any remote gateway to connect.
I am interested in this for remote sites that have 2 static IP with dual wan that need to connect to my datacenter OPNsense firewall. Data center does not need dual.
Is there any documentation about implementing a VPN with this option?
Also this might be a moot point if I can use a distinguished name instead of IP Address and assign firewall.domain.com as the A record for both static IP addresses? If WAN 1 goes down and WAN 2 comes up and since it has the same A record all will e good? Would I need to assign interface to a gateway group?
Dynamic Gateway: Allow any remote gateway to connect.
I am interested in this for remote sites that have 2 static IP with dual wan that need to connect to my datacenter OPNsense firewall. Data center does not need dual.
Is there any documentation about implementing a VPN with this option?
Also this might be a moot point if I can use a distinguished name instead of IP Address and assign firewall.domain.com as the A record for both static IP addresses? If WAN 1 goes down and WAN 2 comes up and since it has the same A record all will e good? Would I need to assign interface to a gateway group?