[Swan] Failover between VPNs going to the same subnet.

John Crisp jcrisp at safeandsoundit.co.uk
Fri Jan 15 18:34:03 UTC 2016

On 15/01/16 16:23, Paul Wouters wrote:
> On Fri, 15 Jan 2016, Roberto Suárez Soto wrote:
>>> My "destination" server has two WANs, and I want to create two ipsec
>>> tunnels from the "source" to each of these WANs, and have failover in
>>> case one of the destination WANs goes down. The src and dst subnets
>>> would be the same in both tunnels.
>>     We're doing this with two IPSec tunnels in transport mode, GRE
>> tunnels over them, and then BGP (though RIP would work too) with
>> Quagga. It works very well, though admittedly is more complex. Feel
>> free to ask if you need help.
> Would you be willing to share/document that on our wiki as a HOWTO?
> I'm happy to do the write up if you give me some (anonymised)
> configurations of all components involved.

+1 as my lack of knowledge prevents me from using Libreswan in a lot of

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 490 bytes
Desc: OpenPGP digital signature
URL: <https://lists.libreswan.org/pipermail/swan/attachments/20160115/6138ca9e/attachment.sig>

More information about the Swan mailing list