4. Possible to single PFsense + dual WAN + high availability IPSec site-to-site

Possible to single PFsense + dual WAN + high availability IPSec site-to-site

  • A

    Please excuse my poor English, I have 2 site both with dual WAN link connection, and I would like to know it is possible to setup the site to site IPSec VPN between 2 location with high availability, for example once the primary VPN link is go down cause by the WAN link fault, the backup VPN link will bring up or change to traffic route though the backup link in each site with single PFsense firewall.

    0
  • G

    You can do this with gateway groups and dynamic DNS, but it is not very reliable.

    The best way to do it is to set up GRE tunnels over IPsec transport mode, with OSPF on top of it to handle the routing.

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2019 Rubicon Communications, LLC | Privacy Policy