Welcome Guest, Not a member yet? Create Account  

IPSec Site to Site with wan loadbalancing not routing


We have a site to site vpn which was working correctly before we applied a load balancing config to it.

from my understanding the pbr of the load balancing is bypassing the routes that the ipsec config added. (pinging the remote end from within vyos works)

we've tried adding an exclude rule to loadbalancing:

show load-balancing wan rule 130
 destination {
     address [REMOTE SUBNET]
 inbound-interface eth1
 interface [wan1 - wan for vpn] {
     weight 1
 protocol all

show load-balancing wan rule 500
 inbound-interface eth1
 interface [wan1] {
     weight 20
 interface [wan2] {
     weight 10
 protocol all

this didn't work.

we've tried doing similar using normal policy routes but that did not work either.

any suggestions are appreciated.

Users browsing this thread:
1 Guest(s)