ScreenOS Firewalls (NOT SRX)
ScreenOS Firewalls (NOT SRX)

redundancy with route based vpn and multihoming

02.06.12   |  
‎02-06-2012 01:33 PM



I have a question about my route based vpn.

We have two isp connected on a radware linkproof and behind we have a ssg550M.

I want to create a vpn with a another site who have a SSG140 but i wonder how to have redundancy.


I don't create two gateway on my SSG550 because my two connections is on a single physical interface.


I think with FQDN because it's a role of my linkproof but dns refresh only 4 hours on ssg.


There is a solution in my situation ?






ScreenOS Firewalls (NOT SRX)

Re: redundancy with route based vpn and multihoming

03.05.12   |  
‎03-05-2012 01:34 PM
As I do not know the radware linkproof so I can not tell exact how to handle this. If you have the possibility to have two different ip addresses (one on loopback) on the ssh140 and you can route the two different addresses one to each isp it might work. Put one tunnel to each address and have a routingprotocoll handle the failover.