Will switch to strongswan allow for High Availability?
-
Not sure what the technical reasons are for this not being possible but will the switch to StrongSwan for ipsec finally allow fault tolerant or ipsec failover on multi-wan?
https://wiki.strongswan.org/projects/strongswan/wiki/HighAvailability
-
Probably not on 2.2, but later on, perhaps
-
Possibly a bounty for the next version after 2.2…
-
Just reading the linked page now …. seems to be closely tied to linux kernel development. Is ha currently an option for FreeBSD (outside of pfSense)?
Or does the 'maybe later' have to include getting equivalent clusterip work into the freebsd kernel?
-
Yeah not sure either. I guess the best way to find out is I will post a bounty. I am sure others will also be interested in a true IPSec failover solution.
-
Yeah not sure either. I guess the best way to find out is I will post a bounty. I am sure others will also be interested in a true IPSec failover solution.
Or ask in the strongswan / freebsd communities.
