10-02-2025 05:30 AM
Hi
We have around 500 sites and most of them are connected via LSVPN and a Site-2-Site VPN for backup. At somepoint the username for the portal connection has been changed which means all off the sites that are connected via LSVPN report that they have failed to connect to the portal.
My question is, if the NGF fails the Portal connection after it had been established and the peer sessions are still there will the NGF carry on using those established sessions? I'm asking as we had an issue with a HA Pair of NGF's, the LSVPN Portal connection was showing as failed but the sessions were showing as connected. The site-2-site VPN had also failed. So what I am trying to understand, will the NGF's carry on using the LSVPN if the Portal status reports as failed and the status of the site-2-site VPN is ignored as it is only being used as backup incase the LSVPN it self fails.
Richard
10-03-2025 07:27 AM
Hi @R.Moth ,
Yes, the existing peer sessions will continue to work. The username and password is needed for initial establishment. After that, the portal (or hub) issues a certificate to the satellite, and the certificate is used for authentication. You can use the existing tunnels to connect to the management interface of the satellite and change the U/P. I would recommend it just in case something happens and it needs to reestablish the session.
Thanks,
Tom
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
