Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    IPsec Failover for Private LAN

    IPsec
    2
    4
    1586
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      jammcla last edited by

      Looking at creating a IPsec Tunnel through the internet as a fail over for a private Extended LAN.  Each side has its own subnet.  Can this be easily done in 1 PFSense box at each end or would it be easier to have 2 boxes at each end with 1 doing just the IPsec tunnel, and the other doing the routing?

      1 Reply Last reply Reply Quote 0
      • C
        cmb last edited by

        Keep it all on one box. IPsec will have to be manually enabled to fail over (if tunnel mode). For automatic, must use transport mode +GRE/gif or OpenVPN, and a routing protocol.

        1 Reply Last reply Reply Quote 0
        • J
          jammcla last edited by

          Thanks for the information.  Going to see if i can get it setup this week.

          1 Reply Last reply Reply Quote 0
          • J
            jammcla last edited by

            I was able to get it setup as a manual fail over and it works awesome.  Pulled 8MB/Second(what windows sees) through the VPN tunnel through the internet, private extended Lan only hit 1MB/Second.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post

            Products

            • Platform Overview
            • TNSR
            • pfSense
            • Appliances

            Services

            • Training
            • Professional Services

            Support

            • Subscription Plans
            • Contact Support
            • Product Lifecycle
            • Documentation

            News

            • Media Coverage
            • Press
            • Events

            Resources

            • Blog
            • FAQ
            • Find a Partner
            • Resource Library
            • Security Information

            Company

            • About Us
            • Careers
            • Partners
            • Contact Us
            • Legal
            Our Mission

            We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

            Subscribe to our Newsletter

            Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

            © 2021 Rubicon Communications, LLC | Privacy Policy