====== Use Case ======

Two local Networks need to be connect to the backoffice via seperate LTE and VPN Connections

{{ :configuration:duallte_dualvlan_dualopenvpn.png?800 |}}


====== Initial Confuguration ======

We are assuming folllowing start config: 

  - Two LTE Interfaces (WWAN1, WWAN2)
  - Two VLAN on LAN1
  - Two OpenVPN Client Connections 


{{ :configuration:screenshot_2021-09-20_17-20-37.png?600 |}}
{{ :configuration:screenshot_2021-09-20_17-20-12.png?600 |}}

====== OpenVPN Server ======

For this configuration you need two seperate OpenVPN server.

They can be either on different domains/IPs or can run on the same IP but on differnt Ports 

This is important as we need the difference to create the extended Routes


{{ :configuration:screenshot_2021-09-21_16-53-58.png?600 |}}
{{ :configuration:screenshot_2021-09-21_16-54-13.png?600 |}}

====== Extended Routes ======

We are using two sets of Extended routes for this use case. 

The first set will be used to assign the openVPN tunnel to the related WWAN interfaces

The second set will be used to assign the VLAN to the correct openVPN tunnel. 

{{ :configuration:screenshot_2021-09-21_16-57-49.png?600 |}}

These Rules will be configured this way: 

For each  WWAN/OpenVPN combination:

{{ :configuration:screenshot_2021-09-21_16-55-29.png?600 |}}

For each OpenVPN/VLAN combination:

{{ :configuration:screenshot_2021-09-21_16-56-31.png?600 |}}

Please also use the check box "discard if down". 

This is important to avoid having packets routed via the default Gateway, if a LTE or OpenVPN link will be down.