[Openswan Users] IPsec failover with BGP

Marcin Giedz marcin.giedz at arise.pl
Thu Feb 12 12:56:22 EST 2009


Is there any way to do IPsec failover over Internet on single machine
running BGP with two ISP? 

During googling I found this thread:
... which looks VERy similar to my problem. I went through IPsec
(openswan) wiki but couldn't find how to set up IPsec tunnel on loopback
or internal interface to do tunnel with external host. 

with BGP occasionally default route can change when one link goes down.
if I put "left=%defaultroute" I guess tunnel will be dropped in such
scenario and re-opened after sometime, right?

Please help me 


More information about the Users mailing list