4. IPsec Failover for Private LAN

IPsec Failover for Private LAN

  • J

    Looking at creating a IPsec Tunnel through the internet as a fail over for a private Extended LAN.  Each side has its own subnet.  Can this be easily done in 1 PFSense box at each end or would it be easier to have 2 boxes at each end with 1 doing just the IPsec tunnel, and the other doing the routing?

    0
  • C

    Keep it all on one box. IPsec will have to be manually enabled to fail over (if tunnel mode). For automatic, must use transport mode +GRE/gif or OpenVPN, and a routing protocol.

    0
  • J

    Thanks for the information.  Going to see if i can get it setup this week.

    0
  • J

    I was able to get it setup as a manual fail over and it works awesome.  Pulled 8MB/Second(what windows sees) through the VPN tunnel through the internet, private extended Lan only hit 1MB/Second.

    0
Log in to reply
 

Products

Applications

Support

Services

News

Resources

Company

Our Mission

As host of the pfSense open source firewall project, Netgate believes in enhancing network connectivity that maintains both security and privacy. We also believe everyone should be able to afford it.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy