I got 2 internet providers and would like to dedicate specific VPN Tunnels to the second internet line. Some tunnels should be routed all together with the HTTP and EMAIL Traffic via the Firewalls default route. Other tunnel destinations (peer gateways) should use the second internet line by specifying a host route for each peer gateway via the second providers next hop.
Does this work now? There is a note at "http://www.phoneboy.com/bin/view.pl/FAQs/VPNsOnMultihomedGateways" telling, that this would not work, but on the other hand, Checkpoint is supporting even "ISP Redundancy"?
Does anybody have experience with such a configuration?
What about a static route on your firewall to the network at the other end with the next hop being the interface on your firewall or router of the isp you want to use. The return packets will be for the correct ip so they should get back to the correct interface.
Its worth noting ISP redundancy doesnt work on all platforms eg. Nokia and from what ive seen you cant control traffic out.
