[Openswan Users] VPN Failoverx

Paul Wouters paul at xelerance.com
Sun Feb 17 13:13:22 EST 2008

On Thu, 14 Feb 2008, Robert Woodcock wrote:

> Since host<->host tunneling using opportunistic IPSec can make ssh'ing
> into a remote router to fix it when the tunnel is down impossible

That depends on the OE policies. If you add to the file
/etc/ipsec.d/policies/private-or-clear, it will attempt IPsec, and allow
plaintext fallback. Of course, you might not want that.

> Some people have done the same thing using Cisco routers - Google for

Yes, it is often used for these kind of failover deployments.

Building and integrating Virtual Private Networks with Openswan:

More information about the Users mailing list