I do have two locations which are primarily connected through MPLS which is not directly connected to firewall. And have site-to-site VPN configured between firewall as a backup path. In this case if my MPLS goes down I will have to make manual changes and need to move routes on firewall to point it to Peplink balance which is deployed at perimeter level for balancing two links.
My firewall does not have a public rout-able IP and it is natted on peplink. Due to this I am facing numerous issues with VPN tunnel from firewall-to-firewall and decided to move VPN tunnel on Peplink so my questions are
- Does VPN tunnel being supported natively without any additional licenses?
- Once we move VPN tunnel to Peplink can we automatically failover to VPN? Like peplink will monitor MPLS link or any of the hop in MPLS path and if that is not reachable bring up the tunnel? I am aware few manual intervention would need but I am ok with that
- Can we have link redundancy with Peplink for VPN? so that if one link goes down VPN would automatically shift to other link?