Multiple WAN failback
Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech
-
- OpenVpn Newbie
- Posts: 1
- Joined: Fri Jul 02, 2021 9:13 pm
Multiple WAN failback
I have multiple WANs on my OpenVPN server, but only one that's really any good. The other WANs are for emergency backup purposes, much slower and less reliable. Currently, my OpenVPN clients are connecting only to the primary WAN, however, recently, the primary WAN has suffered more outages than usual. I'd like to set up multiple 'remote' directives in the clients to failover to OpenVPN server's backup WANs when the primary WAN is unavailable. However, I'd also like the clients to failback to the primary WAN as soon as possible after it becomes available again, as the secondary WANs are much worse and really only barely usable. I'd also like to do this in a way which doesn't cause OpenVPN to have regular gaps in service availability. E.g. one way to configure the failback would be to kill the OpenVPN client process every minute, but that would cause constant gaps in service availability while the client reconnected after every 'kill'. Even killing the client every half an hour would cause regular service gaps. Perhaps some background process which checks the client's log files to see which WAN it is connected to and which pings the server's primary WAN regularly and if the primary WAN responds to pings and the client is connected to a secondary WAN, it kills the client? Is there a good/better way to do this? Thank you.
-
- OpenVPN Protagonist
- Posts: 11137
- Joined: Fri Jun 03, 2016 1:17 pm
- openvpn_inc
- OpenVPN Inc.
- Posts: 1333
- Joined: Tue Feb 16, 2021 10:41 am
Re: Multiple WAN failback
Hehe. I have been that professional service before, and I used Linux iproute2.TinCanTech wrote: ↑Fri Jul 02, 2021 9:39 pmYes .. don't use a free open source software product.
PAY for a professional service.
I learned it mostly from Julian Anastasov's routes page, ja.ssi.bg. Also see the LARTC.org howto, incomplete and unmaintained, but still relevant.
It is doable; it is definitely not trivial.
Good luck, I hope this helps, and have fun with it!
Regards, rob0
OpenVPN Inc.
Answers provided by OpenVPN Inc. staff members here are provided on a voluntary best-effort basis, and no rights can be claimed on the basis of answers posted in this public forum. If you wish to get official support from OpenVPN Inc. please use the official support ticket system: https://openvpn.net/support
Answers provided by OpenVPN Inc. staff members here are provided on a voluntary best-effort basis, and no rights can be claimed on the basis of answers posted in this public forum. If you wish to get official support from OpenVPN Inc. please use the official support ticket system: https://openvpn.net/support