I’ve had great success with Site Magic and WAN failover on the UniFi UDM and UCG series equipment. Very easy to setup and only takes about 30 seconds for the secondary WAN to take over and rebuild the tunnel when the primary WAN fails.
My problem is that I’m in need of maintaining an IPsec tunnel as well as the Wireguard tunnels constructed through Site Magic. That leaves me with two questions, but feel free to chime with the proper way to handle this if I’m headed in the wrong direction.
- My understanding is that I will need to have two IPsec tunnels created in order cover the failover. One tunnel using each of the WAN interfaces?
- I’m under the impression that I will need to use OSPF to accomplish all of this, but Site Magic is already controlling the elements I need to configure. Will I need to stop using Site Magic and build everything up manually?
I looked around the internets and could only find pieces of the puzzle. If anybody has any experience with this situation I’d love to hear your thoughts.
Thanks!