Hi All
What is the best VPN site to site solution when we have: (Find the diagram attached)
MANAGED
NON-MANAGED
PS: The sites B and C have dual wan(Failover) and both sites have the SAME LOCAL SUBNET (i.e 192.168.0.X/24).
Should I use IPSEC Policy, EOIP, IP TUNNEL, GRE or WIREGUARD?
Many thanks
What is currently being used?
What have you tried so far?
Or is this an academic question, what if one had three sites etc. ?
IPsec is outdated, EOIP is Layer2 over VPN.
Modern and todays standard is Wireguard.
Everything else is simple IP-Routing.
Establish VPN form sites to center (if sites have dynamic/public IPs). Or use a dynamically updated DNS-A-Record.
Hi @Anav
This is a real scenario. I just got the datacenter (Main site) with only 2 clients(site b and c as an example) connected but I have a few clients more.
Currently I am using IPSEC POLICY IKV2(which is running fine) to connect between them. The point now is because the clients are getting 2 ISP providers and they want the VPN tunnel working on both.
I’m fine to keep using IPSEC POLICY IKV2 because its compatible with most of enterprise routers. However, I can’t make two tunnels with the same src and dst simultaneously established.
After heaps researches, I just found a possibly solution with “Netwatch” which will monitor both tunnels and switch between them once one goes down.
Is that a good solution? Let me know if you have any other idea to keep both ISP1 and ISP2 tunnels simultaneously established.
Cheers