My current situation:
BUT - as soon as I disable IPSEC - everything starts to working perfectly fine
Could you please help me, how to setup this device to have both - failover working and ipsec tunnel working as well ?
Hello,
Could you please confirm which firmware version is currently running on your RUTX50? The issue you’re describing with failover not working properly alongside an active IPsec tunnel was addressed and fixed in the 7.13.2 firmware release.
If you’re already on 7.13.2 or newer, could you let me know whether the original issue still persists or if it behaves differently now?
Looking forward to your update.
Best regards,
Actually I had 7.14.2 version, but today I did update to 7.14.3. Unfortunately RUTX50 behavior is exactly the same as I describe at first.
If you are Teltonika enginier you will be welcome to connect remotely to my network if you wish (I spoke polish, russian, english).
Hello @malina79,
Could you please check whether the Flush connections option is enabled on your Failover interfaces, as well as the Flush conntrack option in IPsec advanced settings?
If these options are currently disabled, kindly enable them and test the failover behavior alongside your IPsec setup.
Let me know if that helps.
Best regards,
HI Martynas.
Hello @malina79,
Thank you for the update.
At this point, it’s still a bit unclear how exactly you’re testing the failover alongside IPsec, particularly why the public WAN IP is being pinged during the test. Could you please provide a full topology of your setup, including the key IP addresses involved?
Also, could you try testing by pinging a device within the IPsec LAN (right side) from a computer connected to the appropriate VLAN on the RUTX50 side? Then, check if the pings continue when the wired WAN connection fails over to the mobile WAN.
Best regards,
I am using 2 VLANS as local LAN networks, only 2nd VLAN is beeing connected via IPSec and fully routed to the tunnel (with 0.0.0.0 mask). 1st VLAN is regural LAN network without vpn, just behing NAT on WAN interface.
Now I imagine. when I unplug optical wire from modem (modem is bridged with LAN cable to WAN interface), it shoud trigger failover mechanism, and change default WAN interface to Mobile1 (which is of course tested and working fine). And it is - Mobile interface status is changed from Standby to Online, but … routing is not working.
I am doing tests (pingi from screens) from 1st VLAN which is not using ipsec and - I am trying to reach public IP of course.
Hello,
I believe to understand, troubleshoot, and assist you effectively, we’ll need to continue this process privately. You should find a support request form in the inbox of the email address you used for your forum registration. Kindly fill out the form, and please reference Ticket ID: 13772 when submitting it. Once the form is completed, we’ll contact you directly via email to investigate the issue in detail and help work towards a solution.
Best regards,
