Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    IPSEC routing with 2 WAN's

    Scheduled Pinned Locked Moved Routing and Multi WAN
    3 Posts 2 Posters 629 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      CobraGT2000
      last edited by

      So this is what im trying to accomplish -

      IPSEC –> Main Site (has 2 wan's)

      I need to be able to route specific traffic out of each WAN via the remote IPSEC.

      So for example - Website-A needs to go out over WAN-1 |  Website-B needs to go out over WAN-2.

      Locally I am able to get the firewall/routing to work correctly, A goes over Wan-1 and B goes over Wan-2.

      I cant seem to get this to work over the IPSEC tunnel....can anyone provide direction?

      1 Reply Last reply Reply Quote 0
      • J
        jgraham5481
        last edited by

        Determining which IPSEC goes out which WAN is determined by your phase 1 entries for each IPSEC.
        So if you edit the tunnel that is for WAN-1, ensure that under general that the interface selected is WAN-1 or one of it's CARP's, same thing for the tunnel you wish you go out WAN-2. Then verify the config on the remote side of things. Also, please better explain your design, are the tunnels going out over WAN-1 and WAN-2 hitting the same destination? if so are you just splitting the phase 2 entries between them?

        1 Reply Last reply Reply Quote 0
        • J
          jgraham5481
          last edited by

          Also, on your identifiers, I usually manually type those, as different versions have captured and relayed this differently.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.