[Openswan Users] backup connection - 2nd try...
Paul Wouters
paul at xelerance.com
Fri Mar 17 14:11:45 CET 2006
On Fri, 17 Mar 2006, Andreas Lüdtke wrote:
> Sorry for this re-post, but nobody responded. Even a simple "impossible with Openswan"
> would help me.
>
> If a gateway has two static, public ip-addresses (1 normal and 1 backup), is it possible
> to configure Openswan to use the public backup ip-address when the normal public address
> is not available?
>
> Both public ip-addresses lead to the same internal subnet on the other gateway.
You cannot configure two tunnels for the same subnet. You can either define two tunnels,
and use custom _updown scripts using leftupdown= to determine if you're the backup link
or not and do things, or you can do things like GRE encapsulation in IPsec.
The openswan 3.x MAST device might be able to do this, but that is still at least months or
more away.
Paul
More information about the Users
mailing list