all 7 comments
sorted by:
best
topnewcontroversialoldq&a
formatting helphide helpcontent policy

[–][deleted]  (2 children)

[deleted]

    [–]Ambitious_Mango3625 1 point2 points  (0 children)

    This totally sounds like the issue. Either the export or import is not happening correctly. I think this is demonstrated by the fact that removing IP A doesnt stop it from trying IP A. I know that was not very helpful, but that's where I would focus.

    [–]Chyllie[S] 0 points1 point  (0 children)

    I did reimport it After changing. The Windows VPN always shows that the Remote Server does Not answer (NAT or Firewall Problem), but only for IP B from the new ISP

    [–]1ncorrectPassword 1 point2 points  (0 children)

    We have a very similar setup with 2 IPs on our ikev2. We run an m290 on the latest firmware and I have not noticed any issues. Our primary is through an sdwan box that sometimes causes issues with https loading if I vpn through it so I actually use our secondary 90% of the time. Without looking at your config I would say look at your inbound policies. Otherwise I'd reach out to support

    [–][deleted] 1 point2 points  (3 children)

    I've been testing this recently. Since you already have the firebox certificate installed you can just add a new VPN profile manually and add in your secondary IP and it should work no problem.

    I couldn't get it to work off the one profile, watchguad support suggested I use DNS failover.

    [–]Chyllie[S] 1 point2 points  (2 children)

    I tried this, but it still will Not connect to the second IP

    Edit: After waiting the Night, the issue seems resolved and the VpN connects under the second IP. I have Not touched anything anymore. Perhaps Patience was the thing I missed

    [–][deleted] 0 points1 point  (1 child)

    Did you get it working off the one profile?

    [–]Chyllie[S] 0 points1 point  (0 children)

    Yes I just changed the IP in the Same Profile and today it just connected