<div class="gmail_quote">Hello, <div><br></div><div>my Openswan machines are almost 20 hops away each other, so internet problems somewhere in the middle break my VPN.</div><div><br></div><div>at host A I have eth1 and eth2 for two ISP, so I want, that if tunnel A.eth1 <==> B would fail, the A.eth2 <==> B would come up.</div>
<div><br></div><div><br></div><div>I bet this is not an uniqe problem, so what is the standard way to accomplish this kind of automatic failover?</div><div><br></div><div><br></div><div>currently my config is :</div><div>
<br></div><div><div>version<span style="white-space:pre"> </span>2.0<span style="white-space:pre"> </span># Openswan U2.6.26</div><div><br></div><div># basic configuration</div>
<div>config setup</div><div><span style="white-space:pre"> </span>protostack=netkey</div><div><span style="white-space:pre"> </span>nat_traversal=no</div><div><span style="white-space:pre"> </span>virtual_private=</div>
<div><span style="white-space:pre"> </span>oe=off</div><div><br></div></div><div><div>conn VNO1-OSL</div><div><span style="white-space:pre"> </span>#authby<span style="white-space:pre"> </span>= secret</div>
<div><span style="white-space:pre"> </span>left=19.*.*.202<span style="white-space:pre"> </span></div><div><span style="white-space:pre"> </span>leftnexthop=19.*.*.201<span style="white-space:pre"> </span></div>
<div><span style="white-space:pre"> </span>leftsubnet=<a href="http://10.1.0.0/24" target="_blank">10.1.0.0/24</a><span style="white-space:pre"> </span></div><div><span style="white-space:pre"> </span>leftid=@vilnius.loc<span style="white-space:pre"> </span></div>
<div><span style="white-space:pre"> </span>leftrsasigkey=0sAQOIg...</div><div><br></div><div><span style="white-space:pre"> </span>right=84.*.*.138<span style="white-space:pre"> </span></div>
<div><span style="white-space:pre"> </span>rightsubnet=<a href="http://10.72.0.0/24" target="_blank">10.72.0.0/24</a><span style="white-space:pre"> </span></div><div><span style="white-space:pre"> </span>rightid=@oslo.loc<span style="white-space:pre"> </span></div>
<div><span style="white-space:pre"> </span>rightrsasigkey=0sAQOoU...</div><div><br></div><div><span style="white-space:pre"> </span>#leftupdown=/tmp/tunnel1_down.sh #should I be using this??</div>
<div><br></div><div><span style="white-space:pre"> </span>dpddelay=6</div><div><span style="white-space:pre"> </span>dpdtimeout=14</div><div><span style="white-space:pre"> </span>dpdaction=hold</div>
<div><br></div><div><span style="white-space:pre"> </span>auto=add</div><div><br></div><div>conn VNO2-OSL</div><div><span style="white-space:pre"> </span>left=21.*.*.210<span style="white-space:pre"> </span># Public Internet IP address of LTU</div>
<div><span style="white-space:pre"> </span>leftnexthop=21.*.*..209<span style="white-space:pre"> </span># ISP Gateway</div><div><span style="white-space:pre"> </span></div>
<div><span style="white-space:pre"> </span>leftsubnet=<a href="http://10.1.0.0/24" target="_blank">10.1.0.0/24</a><span style="white-space:pre"> </span></div><div><span style="white-space:pre"> </span>leftid=@vilnius.loc<span style="white-space:pre"> </span></div>
<div><span style="white-space:pre"> </span>leftrsasigkey=0sAQOIg...</div><div><br></div><div><span style="white-space:pre"> </span>right=84.*.*.138<span style="white-space:pre"> </span></div>
<div><span style="white-space:pre"> </span>rightsubnet=<a href="http://10.72.0.0/24" target="_blank">10.72.0.0/24</a><span style="white-space:pre"> </span></div><div><span style="white-space:pre"> </span>rightid=@oslo.loc<span style="white-space:pre"> </span></div>
<div><span style="white-space:pre"> </span>rightrsasigkey=0sAQOoU...</div><div><br></div><div><span style="white-space:pre"> </span>#leftupdown=/tmp/tunnel2_down.sh #should I be using this??</div>
<div><span style="white-space:pre"> </span></div><div><span style="white-space:pre"> </span>dpddelay=6</div><div><span style="white-space:pre"> </span>dpdtimeout=14</div>
<div><span style="white-space:pre"> </span>dpdaction=hold</div><div><span style="white-space:pre"> </span></div><div><span style="white-space:pre"> </span>auto=add</div>
</div><div><br clear="all"><br>-- <br>Mvh,<br>Aurimas Skirgaila</div></div>