Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Multi WAN - Failover - Site-to-Site VPN - Block Traffic for some hosts through VPN when the primary gateway is down

    Routing and Multi WAN
    1
    1
    75
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      TE-gnis-booh
      last edited by TE-gnis-booh

      I was wondering if such a scenario is possible:

      I have 2 ISPS:

      • Cable
      • Starlink

      I have setup a gateway failover group WAN_GW_FAILOVER like so:

      • Tier1: Cable
      • Tier2: Starlink

      I have a site-to-site VPN with another site. It has its own gateway VPN_SITE2SITE_WG

      What I would like to happen is that when main ISP goes down, to keep the tunnel (which happens automatically already) and then BLOCK certain hosts from accessing the SITE2SITE gateway.

      Is there a way to implement this besides creating a second tunnel and bind it to specific ISP/gateway?

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.