Dual WAN IPSec pfSense <–> Single WAN IPSec pfSense with fast connection
-
Dear Forum,
We have the following IKEv2 configurations:
Left: pfSense with Dual WAN configured behind 2 'slower' VDSL connections. Standard load balancing + 2 failover gateway groups -> double the speed for internet access. IPSEC -> Phase 1 -> Interface was set the load balancing gateway group. The tunnel has 4 Phase II SAs
Right: pfSense with Single WAN - at co-location - with a very fast internet connection. For IPSEC -> Phase 1 -> Interface, we have just set it WAN. We have created two identical IPSec tunnels from here. One to left-wan1-ip and the other to left-wan2-ip.
Problem. Only the tunnel from right to left-wan1-ip works, the second does not come up. How can we make the work for both to have double tunnel speed? Or is this not possible? Thanks for any help.
Alfredo.
-
Anyone???
-
bump
-
You can't do that, only the first matching will come up.
-
So there is no way to bundle both WAN1 + WAN2 together to make an IPsec tunnel faster?
Thanks
Alfredo
-
Short answer: no.
Long answer: no, you can't with IPsec, but I guess you could set up two independent OpenVPN tunnels for example, and use some routing magic to split up the traffic among them
-
Thanks; was worth the try… :D
Alfredo.
-
Hi,
Alternative you Need two ip addresses at colocation, setup transport IPSec connections and gre Tunnels over it.
Sorry for spellings Tablet with wrong keyboard
Best regards
Thomas