Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
385
Views
0
Helpful
1
Replies

VPN with Load Balancer

dhavaltandel
Level 1
Level 1

‎10-02-2007 10:51 PM - edited ‎02-21-2020 03:18 PM

Hi All,

i wan to create site to site vpn between two offices.

at my HO i have third part UTM.

at branch office i have two ISP and using load balancer for traffic sharing as well redundancy. both ISP has given different public ip address.

still i wan to create site to site vpn between branch having two different ip address and HO (single ip address)

is that possible to create two site to site vpn configuration on HO UTM for both the public ip address, thus whenever one link goes down and if load balancer switch to another ISP than VPN tunnel can get up by using another one.?

please post your suggetions...

- Dhaval Tandel

Labels:
0 Helpful
1 Reply 1

lcipriani
Level 1
Level 1

‎10-04-2007 06:17 AM

You need to be careful when using load balancers in an IPSEC VPN environment. If the load balancer redirects traffic mid-session it will break your tunnel. The VPN server will think it's a replay attack and drop it. There are some load balancers that work with VPNs and some may require you to use their VPN solution to maintain the state of the tunnel.

There are easier ways to provide failover for VPNs if that's what you're looking for.

0 Helpful
Customers Also Viewed These Support Documents