4. IPSEC load balancing with multiple WANs

IPSEC load balancing with multiple WANs

  • B

    I've got 2 WANs with load balancing set up, I can see both pipes are being used fairly evenly.

    But I have two IPSEC tunnels (from this office back to our colo) and I am wondering if there is any way to load balance these also? At the moment I can only tell the IPSEC to use a single interface (as specified in the phase1 config).

    Any way to make IPSEC balanced across both connections? PfSenses at both ends are 2.4.4 (latest at the time of writing)

    0
  • Rebel Alliance Developer Netgate

    If you use Routed IPsec (VTI) then you would have an IPsec gateway for each tunnel that you could use with a gateway group. Though because VTI doesn't support reply-to it may not be as ideal as it could be, the return traffic would only take one of the two WAN tunnels.

    You can pull it off easier with OpenVPN (tunnel up on each WAN, assign the interfaces, use gateway groups + firewall rules only on the assigned interface tabs)

    0
 

Products

Applications

Support

Services

News

Resources

Company

Our Mission

As host of the pfSense open source firewall project, Netgate believes in enhancing network connectivity that maintains both security and privacy. We also believe everyone should be able to afford it.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2018 Rubicon Communications, LLC | Privacy Policy