e the default routes on the main office
machine and restart isakmpd. Can anyone recommend a way to do VPN
failover in this manner? Is it possible to use the DPD of dynamic mode
to somehow make isakmpd negotiate a backup tunnel when the main tunnel
goes down?
Thanks so much,
Steve
/
/
DB?
I guess I have some poking to do, and interesting entries for November's TPS
reports.
> -Original Message-
> From: Brian A. Seklecki [mailto:[EMAIL PROTECTED]
> Sent: Friday, October 21, 2005 06:22 PM
> To: [EMAIL PROTECTED]
> Cc: misc@openbsd.org, 'Jason D
Please note that at this time,
sasyncd can fail IPSEC associations to a 2nd machine
But not yet fail them back, when the master recovers
The developer of this stuff hasn't finished it yet.
More to the point, "how to find this info".
1: Go to http://www.openbsd.org/cgi-bin/man.cgi
2: click "apropos"
3: make sure "current" is selected
4: query "sync"
5: click on "sasynchd(8)" and "sasychd.conf(5)"
http://www.openbsd.org/cgi-bin/man.cgi?query=sasyncd&sektion=8&apropos=0&manpath=OpenB
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
> I have been moving a single Linux FW to a pair of OBSD
> machines, lured by carp and pfsync. This has been working
> well in my test environment. This also lead me to vpns
> running with ISAKMPD, replaceing a Freeswan box, and
> forestalling
I have been moving a single Linux FW to a pair of OBSD machines, lured by carp
and pfsync. This has been working well in my test environment. This also lead
me to vpns running with ISAKMPD, replaceing a Freeswan box, and forestalling
purchasing proprietary products for site to site partner vpns
6 matches
Mail list logo