Multiple VPNs via Gateway Groups?
-
I'm looking to toggle quickly between different VPN companies.
Someone told me I could do this through gateway groups? But I'm having trouble actually implementing it. Can you please describe how to do this?
-
Gateway groups can be setup to switch traffic between them automatically but not to toggle them manually.
Your username is only going to attract the worst kind of spam to every thread you respond in. Please change it.
Steve
-
@stephenw10 When you say automatically, what conditions could trigger a switch in interface or VPN?
I have changed my username,, thank you
-
@swedengirl234 said in Multiple VPNs via Gateway Groups?:
When you say automatically, what conditions could trigger a switch in interface or VPN?
The gateway monitoring. You have to assign an interface to each VPN, hence you get a gateway for it.
pfSense automatically activates monitoring for the gateways by pinging it (the virtual Server IP). But often the server is not responding and so the gateway is determined as offline. If this is the case edit the gateway settings and set a custom monitoring IP. It could be any public IP which is responding to pings. pfSense automatically routes this IP over the respective VPN.
Ensure that the gateway status is online for the gateway group to failover properly.In the gateway group you can set the failover trigger to gw offline. Then if the tier 1 is offline pfSense will switch to tier 2.
-
-
@viragomann So you are saying that gateway groups can ONLY be used to switch VPNs in an automatic situation should one VPN IP not respond, and can NOT be used to manually toggle between the different interfaces?
Because right now I'm toggling interfaces manually for different VPNs and it's a huge hassle
-
@swedengirl234
Yes, gateway groups are meant to failover automatically in case one member is offline or has high latency.
But there might also be ways to toggle the gateway manually, when using a gateway group for routing. For instance you could disable a member gateway by ticking the respective action button in System > Routing > Gateways.Because right now I'm toggling interfaces manually for different VPNs and it's a huge hassle
I'm wondering what's the reason for this. How do you do that?
-
@viragomann yes I prefer certain VPNs for work or personal.
I do it via having different interfaces so all the firewall rules switch at once. However, it's annoying to switch DNS settings as well
I am/was struggling to get it to work via Gateway Groups. Do you know where I can find more on this because the official Netgate documentation only elaborated on setting up the proper gateway, not changing
