I need to configure a RUTX12 router to connect to two separate IPsec VPNs, one for each SIM card. I have already set up a DDNS service (similar to DynDNS) on both SIM interfaces so the router can be reached remotely.
I am having trouble configuring the routing for these two simultaneous connections. Could you please help me with the correct setup? Thank you.
Greetings,
Could you please clarify the use case for this setup? A sketch of the network topology, along with details of what is currently configured, would also be very helpful.
You can find an IPsec configuration example here: IPsec RUTOS configuration example - Teltonika Networks Wiki
Regarding the two separate IPsec VPNs, one for each modem, I will need to test this on my end to determine whether any additional or different configuration is required. I will get back to you with the necessary details as soon as possible. In the meantime, I would appreciate it if you could clarify my previous questions.
Best Regards,
Justinas
Greetings,
Is the connection successfully established through both VPN tunnels, and the issue is only related to routing?
If that’s the case, you will need to configure policy-based routing for both LAN interfaces.
Have a look at the configuration example provided here: Policy Based Routing - Teltonika Networks Wiki
Please keep me informed of the results.
Best Regards,
Justinas
Thanks for the guide, it’s much clearer now!
However, I don’t think this setup will meet my needs. The issue I’m facing is that both IPsec VPN connections point to the same IP address (Fortinet), so I have no way to apply Policy-Based Routing (PBR) effectively.
To resolve this, I would need the Teltonika to work in parallel (if that’s even possible), managing the routing specifically for each VLAN.
For example:
VLAN 51 should route exclusively via SIM 1, enter the VPN, and reach the firewall’s public IP.
VLAN 52 should route exclusively via SIM 2, enter the VPN, and reach the firewall’s public IP.
Greetings,
Policy-based routing is used to determine which WAN interface traffic exits the router through. Even though the IPsec tunnel points to the same IP address, this does not affect the routing decision, as the policy rules are created based on the LAN and WAN interfaces.
In this case, traffic originating from the 192.168.51.x network is routed through SIM 1 (MOBILEWAN1), while traffic from the 192.168.52.x network is routed through SIM 2 (MOBILEWAN2).
If I misunderstood your last reply, please clarify.
Best Regards,
Justinas
I managed to set up the routing configuration, but I can’t get both IPsec VPNs to work at the same time. As soon as I activate the first one, the second one disconnects!
Greetings,
For troubleshooting purposes, we will require more sensitive information from your end, such as the troubleshoot file, which may contain passwords, public IP addresses, serial numbers, and such. To avoid leaking this information, we have sent you a form to fill out, which you will receive in your e-mail inbox that you have registered your account with in the forums. In the Ticket ID field of the form, please enter the ID of this thread, which is 17687.
Best Regards,
Justinas
I have sent the requested information but haven’t received a response yet. Are there any updates?
