Local site has two WAN connections - one cable, one DSL from two
separate internet providers.
Remote site has one ISP connection.
Is it possible for pfSense to automatically failover a site-to-site
OpenVPN connection between the two sites?
Thanks,
Dave
--
On Jul 16, 2007, at 12:10 PM, Chris Buechler wrote:
David Wadson wrote:
It's probably possible - but will require control of all the
endpoints and some static routing.
Endpoint at site B will need to know the route to site C (through
site A's gateway)
Site C will need a static
It's probably possible - but will require control of all the endpoints
and some static routing.
Endpoint at site B will need to know the route to site C (through site
A's gateway)
Site C will need a static route for the traffic to flow back to site B
(though site A). If you can't do that, th
On Jul 13, 2007, at 5:23 PM, David L. Strout wrote:
WAN=STATIC ADDRESS
LAN-NET1=192.168.1.0/24 - trusted network users
OPT2-NET2=192.168.100.0/25 - untrusted contractors
OPT3-NET3=192.168.100.128/25 - untrusted vendors
OPT3=10.0.0.0/30 - IPcop LAN
OPT4=10.0.0.4/30 - IPcop WAN
Here's wh
Is there a way to force a single IPSEC tunnel to reconnect other than
restarting racoon and all the tunnels having to reconnect? I'm trying
to troubleshoot a VPN that is occasionally going down and would like to
be able to just restart that one connection.
Dave
--
there's a line with the
remote gateway:
udp 24.109.252.249:500 -> 216.211.25.114:65061 -> 209.91.153.18:500
SINGLE:NO_TRAFFIC
It appears this IPSEC tunnel is trying to connect via the WAN
interface, rather than the OPT1 interface.
Any suggestions on where to go from he
I think I figured out a means of doing it. I created a load balancer
pool with just the Squid server listed as a gateway. Then I created a
firewall rule on the LAN that sends port 80 traffic from any IP but the
Squid box to that load balancer pool. The only part that I haven't
confirmed as func
I'm in the process of (hopefully) migrating from a Linux router running
Shorewall to a pfSense box. One of the things we were able to do on our
Linux router was transparently proxy to a separate machine on our
network running Squid.
We accomplished this with a mix of iproute and iptables. Firs
