[Swan] Failover between VPNs going to the same subnet.
John Crisp
jcrisp at safeandsoundit.co.uk
Fri Jan 15 18:34:03 UTC 2016
On 15/01/16 16:23, Paul Wouters wrote:
> On Fri, 15 Jan 2016, Roberto Suárez Soto wrote:
>
>>> My "destination" server has two WANs, and I want to create two ipsec
>>> tunnels from the "source" to each of these WANs, and have failover in
>>> case one of the destination WANs goes down. The src and dst subnets
>>> would be the same in both tunnels.
>>
>> We're doing this with two IPSec tunnels in transport mode, GRE
>> tunnels over them, and then BGP (though RIP would work too) with
>> Quagga. It works very well, though admittedly is more complex. Feel
>> free to ask if you need help.
>
> Would you be willing to share/document that on our wiki as a HOWTO?
> I'm happy to do the write up if you give me some (anonymised)
> configurations of all components involved.
>
+1 as my lack of knowledge prevents me from using Libreswan in a lot of
scenarios....
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 490 bytes
Desc: OpenPGP digital signature
URL: <https://lists.libreswan.org/pipermail/swan/attachments/20160115/6138ca9e/attachment.sig>
More information about the Swan
mailing list