Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Failover OpenVPN mirrored/load balanced Servers with one WAN Address shared

    OpenVPN
    2
    2
    124
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      MeltedTiger last edited by MeltedTiger

      Hi,

      I've been using pfsense for a while and i've been experimenting what I can achieve, one of the issues is that I'm not at home much, so in my free time I threw together a Frankenstein build to get a OpenVPN server up and working so I could remote back home. (I have a port forward for my main router to the pfsense box)

      Since due to the Frankenstein build (2003 HP Thin Client with a 1Ghz Processor/512MB of RAM - Memory Stick as the hard drive for pfsense) it's had a habit of breaking sometimes. Due to this it's cutting off my access back home.

      I've been researching but I can't find anything solid on whether I could setup a mirrored OpenVPN server between two pfsense boxes on my network and mirror the OpenVPN configuration between the two so I can still use the same port and same client configuration as I want to have a VM on one of my hypervisors running as the backup.

      Thanks in advance for any help and my apologies if this is a repost/wrong section post.

      -Dan

      1 Reply Last reply Reply Quote 0
      • Derelict
        Derelict LAYER 8 Netgate last edited by

        High Availability would solve that. You would port forward OpenVPN traffic to the CARP VIP. If the primary goes down, the traffic will hit the secondary instead.

        XMLRPC sync would sync the OpenVPN server configurations between the two.

        It is an active/passive configuration though. The would be no "load balancing."

        Chattanooga, Tennessee, USA
        The pfSense Book is free of charge!
        DO NOT set a source port in a port forward or firewall rule unless you KNOW you need it!
        Do Not Chat For Help! NO_WAN_EGRESS(TM)

        1 Reply Last reply Reply Quote 0
        • First post
          Last post

        Products

        • Platform Overview
        • TNSR
        • pfSense
        • Appliances

        Services

        • Training
        • Professional Services

        Support

        • Subscription Plans
        • Contact Support
        • Product Lifecycle
        • Documentation

        News

        • Media Coverage
        • Press
        • Events

        Resources

        • Blog
        • FAQ
        • Find a Partner
        • Resource Library
        • Security Information

        Company

        • About Us
        • Careers
        • Partners
        • Contact Us
        • Legal
        Our Mission

        We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

        Subscribe to our Newsletter

        Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

        © 2021 Rubicon Communications, LLC | Privacy Policy