On 2/26/2015 10:54 AM, Michael O Holstein wrote: > Are these windows machines? .. configure IPSEC policies to do what you want > (locally, on the machines). > If they are a mix of windows/linux or all *nix you can do it with policy > based routing and IKE demon of whatever flavor you like. > > Also consider just setting up "opportunistic IPSEC" if you have the ability > to configure DNS for it.
Everything is running Linux. Two (possibly four) of them will be the latest Ubuntu LTS (the load balancers), the rest (webservers) currently are an older CentOS 5 release. Upgrading the CentOS 5 systems is on the agenda, but isn't going to happen soon. If that means I need to install something from source because a relevant package isn't available, that's what I'll do. If you have any ideas, please point me at good resources for learning and implementing. I have complete control of all DNS, does that make opportunistic IPSEC a viable option on a local LAN? Thanks, Shawn ------------------------------------------------------------------------------ Dive into the World of Parallel Programming The Go Parallel Website, sponsored by Intel and developed in partnership with Slashdot Media, is your hub for all things parallel software development, from weekly thought leadership blogs to news, videos, case studies, tutorials and more. Take a look and join the conversation now. http://goparallel.sourceforge.net/ _______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
