Thread: [Ipsec-tools-users] load balancing using racoon/ipsec-tools
Brought to you by:
mit_warlord,
netbsd
From: Kate K. <kat...@gm...> - 2007-11-21 16:20:10
|
we are running Kame/racoon in tunnel mode (two LAN are connected across Internet) both of offices(LANs) have at least two connections to Internet (primary and secondary). is there way to make racoon switch to secondary connection if primary has failed for some reason (and to change in-kernel policy as well) ? |
From: Brian A. S. (Mobile) <bse...@co...> - 2007-12-17 00:56:41
|
If you are running OpenBSD pf(4) on NetBSD or FreeBSD, you could use carp(4) to make the destination peers address HA. As for making SPD/SAD data structures synchronized (a la sasyncd(8) in OpenBSD), you will probably need to sponsor that development effort. ~BAS On Wed, 2007-11-21 at 21:20 +0500, Kate Kretz wrote: > we are running Kame/racoon in tunnel mode (two LAN are connected > across Internet) > > both of offices(LANs) have at least two connections to Internet > (primary and secondary). > > is there way to make racoon switch to secondary connection if primary > has failed for some reason (and to change in-kernel policy as well) ? > > ------------------------------------------------------------------------- > This SF.net email is sponsored by: Microsoft > Defy all challenges. Microsoft(R) Visual Studio 2005. > http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/ > _______________________________________________ > Ipsec-tools-users mailing list > Ips...@li... > https://lists.sourceforge.net/lists/listinfo/ipsec-tools-users > > > > > > |