Welcome Guest, Not a member yet? Create Account  




IPSec Site to Site with wan loadbalancing not routing

#1

We have a site to site vpn which was working correctly before we applied a load balancing config to it.

from my understanding the pbr of the load balancing is bypassing the routes that the ipsec config added. (pinging the remote end from within vyos works)

we've tried adding an exclude rule to loadbalancing:


Code:
show load-balancing wan rule 130
 destination {
     address [REMOTE SUBNET]
 }
 inbound-interface eth1
 interface [wan1 - wan for vpn] {
     weight 1
 }
 protocol all



show load-balancing wan rule 500
 inbound-interface eth1
 interface [wan1] {
     weight 20
 }
 interface [wan2] {
     weight 10
 }
 protocol all



this didn't work.

we've tried doing similar using normal policy routes but that did not work either.

any suggestions are appreciated.
Reply





Users browsing this thread:
1 Guest(s)