Support for IPSec Tunnel Failover Planned
We would like to be able to specify multiple (or dynamic) endpoint IPs for an IPSec tunnel. This would allow us to create a tunnel to a firewall with 2 WAN connections, so that the tunnel could remain operational using either available WAN IP in case of an ISP outage at our customer location.
Comments
9 comments
Thanks for sharing this request. We've reviewed it and confirmed we're moving forward with IPSec Tunnel Failover as part of the Gateway 14 release in this year's roadmap.
To make sure the final behavior matches your operational expectations, could you share how you’d like the tunnel endpoints to be defined and what success looks like during failover?
Seconding this feature request. The ability to have failover IPSEC tunnels (multi-wan to same tunnel subnet/destination) would be a very nice to have feature. We have this implemented for a larger client between their primary office and 3 satellite offices (hardware firewalls), however the remote employees had no connectivity to the main office via Timus for a few days when the primary office had an outage and failed over to their backup connection.
I can think of 5-6 other clients we have currently on Timus where this type of setup could be beneficial, even though the scenario has yet to come up for them specifically.
Yes, this would be a big help for customers with SD-WAN or HA pairs of firewalls, ensuring the Timus IPSec tunnel to that location remains up through any WAN changes or active/passive flipping.
Planned - Will be LIVE with Cloud 1.30.0 and Gateway 14.0.0 Releases - Q3 , 2025.
I didn't see this in the release notes for Gateway 14, was this added?
Eric Peterson - Gateway version 14.0.0 has not been released yet. It should be out in Q4.
Has this been released?
Eda, I think the endpoints should be definable by IP or domain name in a primary/secondary format, and success would be that the tunnel between the remote end and Timus gateway is able to fail to the secondary endpoint without manual intervention.
Eric Peterson Thank you for the feedback! This is on our roadmap for this year and we will be sure to keep you informed as progress is made.
Please sign in to leave a comment.