Currently my home network is using virtual firewall (Sophos XG) , but this is not so practical when hosting server is down. All my home devices cannot connect to internet.
From other side mikrotik does not support some usefull things like reverse proxy so i can easily replace Sophos.
I’m trying to find way to have mikrotik router and keep Sophos VM, but to have redundancy if Sophos is down.
Active ISP–>Mikrotik–>Sophos–>LAN
Passive ISP–>Mikrotik–>LAN
Goal is to use Sophos as main gateway in bridge (or gateway mode as now), and in case it is down, clients to switch to Mikrotik as gateway
Is there a way to achieve this setup with Mikrotik?
Any advices and ideas are welcome.
I was managed to fix the issue finaly.
For these who are interested, below is what was done.
Used Netwach on Mikrotik for ping monitoring on second gateway Sophos XG.
Netwatch have up and down option to execute the commands.
If Sophos XG is reachable up-script set gateway on DHCP server network to point Sohpos
if Sophos XG is down down-script set gateway on DHCP server network to point back to Mikrotik
Only disadvantage is that the new gateway will be populated on next dhcp lease cycle.
I have set DHCP lease time to 6 min, so on aproximately every 3 min gateway will be updated.
This means 3 min downtime for the network Clients.
Not sure if someting more can be done to force dhcp renew on clients from mikrotik.
