SG-2220 has Dual-WAN-Support?
-
Hello!
I'm wondering: On this page https://store.pfsense.org/SG-2220/ it says: "… Enjoy unlimited users, unlimited firewall rules, unlimited IPsec tunnels, dual WAN, etc..."
I'm really wondering if this is true because the hardware has only one WAN and one LAN port. I checked the user manual about the configuration of the WAN settings but I don't find anything about Dual WAN too.
So I'm wondering if this is a mistake in the description or how the magic works that I can use Dual WAN with only one WAN Port.
=================
Btw: I'm looking for a new router for our IT company. ~20 people are working in the office and approx 5 others from outside via VPN. VPN is used only for small things like time management, something sharing documents. All regular traffic should not go over the router. I want to get rid of the f***ing Cisco RV325 which is the most awful thing (no useable VPN Clients, only PPTP, VPN connections always use the internal DNS, which crashs once in the month. I hate that thing.)
We have 2 internet connections but one is only for backup reasons. One is hot (with ~100 MBit/sec, which is barly used full), the other is standby (~ 8 MBit/sec). But thats the reason why we need Dual WAN. (And the best would be if it switches to the other connection automatically.) I guess the SG-2220 would be good enough - if it has Dual WAN. What do you think?
-
well technically you could, if you put a managed switch on the wan-side and used vlans .
personally i'd go for a model with more physical interfaces. -
well technically you could, if you put a managed switch on the wan-side and used vlans .
personally i'd go for a model with more physical interfaces.^ that.
It can use VLANs, combined with a managed switch, to reach many networks as if it had more interfaces. It's not as optimal as more physical interfaces, but in many cases it's good enough. If your WAN speeds combined are not greater than the bandwidth of the NIC, it's likely OK to use for multiple WANs.
-
If this will be really for company please get rid of the VLAN capable switch in front and go with a SG-2440 or
SG-4860 with more WAN and/or LAN ports for a more easy going and set up.The SG-2220 can be a dual WAN firewall and serving then the client over WiFi too, if this is an option
for you but usually it is more a end user or SOHO customer devices for your homeworkers and/or clients. -
Some might also choose to use LAGG+VLANs for redundancy, using both WAN and LAN (And additional WANs or LANs) as VLANs.
It's technically possible, though we much prefer physical isolation for security, though if you're in a bind and your options are limited, the hardware is capable.
-
Thanks guys for the answers!
Yes, we will go with a hardware with multiple interfaces. The solution with a managed switch and VLANs is much more complicated. We will go with the better hardware.
Thanks again for the competent information! :)