On 05/19/2011 09:57 AM, Dominic wrote:
Hi,
I'd like to query if there is a way to have multiple server addresses
in an OpenVPN setup?
I assume you mean an OpenVPN client connection ?
I would like to add redundancy in the event of my provider going down,
I can then connect
to one of the other provider's IP's (I have 3 WAN interfaces on the
OpenVPN server machine).
Is this possible or would I need to use a DNS address with multiple
records or DYNDNS type
solution.
Yes it is possible, OpenVPN handles this through specifying multiple
"remote" servers.
Since the pfsense OpenVPN Client setup page has only one "Server
address" field which is translated to a "remote" line in the
configuration, you can just add the others you need in the "custom
options" field and they will all end up in the config file.
OpenVPN will try them in sequence, so the first one is always tried
first, if that fails it tries the second one, if that fails the third, ...
The only issue I found with this is that if the first openvpn server
comes back online but the second is also still available, OpenVPN will
only go back to the first openvpn server by manually clicking "save" on
the openvpn client page.
So if you have a fast preferred primary openvpn connection and a slower
failover connection, if the failover kicks in you have to manually kick
it back to the primary link when it is available again. (but I guess you
could script that somehow if that is an issue)
Regards,
Hans
---------------------------------------------------------------------
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For additional commands, e-mail: support-h...@pfsense.com
Commercial support available - https://portal.pfsense.org
