GFI Forums: Kerio Control » Multiple Internet Links

Home » GFI User Forums » Kerio Control » Multiple Internet Links - Failover

Show: Today's Messages :: Show Polls :: Message Navigator
E-mail to friend

Re: Multiple Internet Links - Failover [message #120631 is a reply to message #120069]

Sun, 12 April 2015 15:08

UnifiedTechs-Brian
Messages: 159
Registered: March 2011
Location: Vero Beach, FL

menace wrote on Tue, 17 March 2015 03:07

ksnyder (KERIO) wrote on Mon, 16 March 2015 23:56
Use a traffic rule to force traffic on the primary link. Below that rule, add an identical rule to force traffic through the backup link.

For example, rules for VPN-clients connect to the Kerio Control as you said. One for Primary Link and one for Backup Link.
While the Primary Link works users can easily connect to the server via Backup Link's IP according to the second rule.

The problem is you should not be connecting the client to VPN directly with IP addresses. This whole situation can be fixed by using DNS and the tools already built into Control:

Use the failover built into Control VPN client already. "Multiple endpoints can be defined to configure VPN failover in case the Kerio Control VPN server is load balancing with multiple Internet links. To separate entries, use a semicolon (for example, primary.example.com;secondary.example.com)". http://kb.kerio.com/product/kerio-control/vpn/configuring-ke rio-control-vpn-client-1303.html.

To force users to go back to your primary link when it returns you need to hit the advanced button under "Internet Connectivity" and make sure the box "Force reconnect of all VPN tunnels when the primary line is used again" This will cause the VPN tunnels to drop and when they reconnect they will go back to the primary link barring any other issues.

(Alternate method with 3rd party service: Use a DNS service with failover such as EasyDNS. Users always connect to VPN.domain.com. The DNS host monitors if the address is up and if it goes down it fails over the record to the second IP, when the first IP returns the DNS record goes back to normal.)

- Brian
Kerio Preferred Partner, Reseller & Hosting Provider
Unified Technology Solutions

[Updated on: Sun, 12 April 2015 15:17]

Report message to a moderator

[Message index]

		Multiple Internet Links - Failover By: menace on Tue, 17 March 2015 04:03
		Re: Multiple Internet Links - Failover By: mlee (Kerio) on Tue, 17 March 2015 05:15
		Re: Multiple Internet Links - Failover By: menace on Tue, 17 March 2015 05:29
		Re: Multiple Internet Links - Failover By: ksnyder on Tue, 17 March 2015 06:56
		Re: Multiple Internet Links - Failover By: menace on Tue, 17 March 2015 08:07
		Re: Multiple Internet Links - Failover By: Kerio/GFI Brian on Tue, 17 March 2015 15:40
		Re: Multiple Internet Links - Failover By: menace on Tue, 17 March 2015 15:44
		Re: Multiple Internet Links - Failover By: UnifiedTechs-Brian on Sun, 12 April 2015 14:47
		Re: Multiple Internet Links - Failover By: UnifiedTechs-Brian on Sun, 12 April 2015 15:08
		Re: Multiple Internet Links - Failover By: ksnyder on Tue, 17 March 2015 15:31
		Re: Multiple Internet Links - Failover By: Kerio/GFI Brian on Thu, 09 April 2015 16:53
		Re: Multiple Internet Links - Failover By: Kerio/GFI Brian on Mon, 13 April 2015 21:48
		Re: Multiple Internet Links - Failover By: Kerio Blue on Sat, 07 May 2016 00:13
		Re: Multiple Internet Links - Failover By: Kerio Blue on Mon, 09 May 2016 18:03

Previous Topic:	Speed issues with FTP and kerio control VPN tunnel
Next Topic:	real time monitor kerio sip trunk register status

Goto Forum:

-=] Back to Top [=-

[ Syndicate this forum (XML) ] [

] [

]

Current Time: Mon May 29 01:01:14 CEST 2023

Total time taken to generate the page: 0.05286 seconds