4. [SOLVED] OpenVPN Multi WAN CARP Failover

[SOLVED] OpenVPN Multi WAN CARP Failover

  • I

    Hello!
    I'm implementing multiple Site2Site VPN with failover on multiple WANs.

    On the Server I configured one openvpn server per client, each with its own udp port. Every server is listening from localhost.

    Every WAN connection has a CARP IP NATed to localhost for the OpenVPN udp ports.

    When a client connects to the VPN, it is unable to bring the tunnel up, because of this message on server log:

    "TCP/UDP: No outgoing address to send packet "

    Putting in the custom options:

    local x.x.x.x (CARP VIP of WAN)

    the tunnel goes up.

    Any help appreciated, I'm out of ideas!

    EDIT: I forgot to mention that if I connect to WAN IP (No matter which) the tunnel goes up.

    0
  • I

    SOLVED!
    I reviewed my settings: I made NAT rules for WAN Address instead of CARP VIP.
    Changed NAT Rules to CARP VIP (openVPN Port) -> localhost.
    Now it works like a charm and failover is great!

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy