I am using two PSA3000 in active/passive mode, with four vlans for network segmentation. Each vlan has two IPs (one per device). If i connect to the vpn by one IP of masters vlan, when this device fails, the vpn fails and i can´t connect to the same IP, obviously.
So, i will need something like a VIP for that vlan in order to don´t lose connection when one device is down? How can i do this?
I hace tried doing a virtual port attached to the vlan, but if i am connected to de virtual port IP and one of the devices is down, i lose the connection.