Openvpn Failover
-
How to configure failover in pfsense for Openvpn, so that it automatically switches to working wan if one wan goes down
Can anyone please help me on this ? -
Here : pfSense HA setup
-
@rajukarthik Outbound or inbound?
-
@Konan-0 Openvpn Clients will connect to our Pfsense network so Inbound traffic comes to our Network
-
@rajukarthik As I'm sure you've found, you can bind the OpenVPN to both WAN interfaces, so that's the first part.
After that, I can think of a couple of ways to sort out incoming clients.
-
Quick and dirty - publish 2 A records for vpn.mycompany.com with the respective WAN IPs in each. The downside is that there's no real way to have the clients 'prefer' one WAN over the other (so not great if you have a fast leased line primary and DSL backup, for instance) and that if you have a failure it'll take a while for clients to sort themselves out and use the other IP.
-
Use DDNS - sign up a DDNS address to use for VPN. You should be able to configure configure PFsense to update it with the 'main' WAN when that is in use and then drop back to the backup if you loose your connection. I'm sure there are guides about on this.
-