I have a culster of 5000 appliances and firmware R80.30.
I got 4 ISPs link configured for multiple purposes. 2 of them are for VPN and Remote Access.
Currently, the Link Selection of the VPN configuration image are in attachments, and there are set up both public addresses used for VPN. I have it configured as Use Probing HA and both public IP address are set in there.
In the cluster object, the main IP address is set to be one public IP used for VPN connection. Each member has their private IP. When a user tries to connect to VPN using Client, it is successful and there is no problem with it.
For TAC indication, the cluster object main IP has to be set with the private Virtual IP for correct installation of policies between member, sync and logs delivery to the server, etc. Here is where the problem comes. By doing so, the VPN Clients server IP in the site configuration is set to be the Public IP, and the connection to it is successful, but when is disconnected, the server IP in the Client changes to the private Virtual IP of the cluster (which is current the main IP of the object) and makes impossible the connection, due to user are in different locations, WFH, etc.
The solution for it is to get back the public IP as the object main IP.
Why does the VPN Client changes the server IP configured in the site after first connection? And can I do for having the private Virtual IP as main of the object and also keep the VPN Clients server IP with the Public one?