Guys, been using pfsense for a while now, and love it.
previously I used lots of openvpn - but with using pfsense and WRAP boxes, and CARP failover - I've moved to IPsec for a few reasons: - openvpn under pfsense was unreliable, sometimes the whole openvpn processes quit, and the box is needed to be restarted - openvpn and CARP didnt play very well, or perhaps I didnt try enough. but CARP and ipsec seem fine The advantage openvpn did have, was being able to try multiple IPs from the client end, and by routing different destinations over different connections, it failed over nicely - keeps conncections intact, and bringing the same subnet up over the 2nd connection. It didnt really have a prefered connection, but atleast it did failover. I have read and played with multiple WAN connections in pfsense via: - outbound firewall rules But what I'd really like is: - multiple routes to the same destination - weighting on those routes - some ability to choose routes based on availabilty of those routes - ability to have 2 ipsec VPNs, accross different physcial connections, weighted routes to decide which VPN to use - every to work over CARP ...... nice ..... this should give me: - failover of all traffic, possibly the existing connections - fast failover between connection, possibly without scripts, or need to whack an address to see if it up. any idea ? SCOTT FARRELL IBM Certified Consultant m 0412 927 156 p 02 9411 3622 f 02 8214 6426 a IBM Building, The Atrium 601 Pacific Highway, St Leonards NSW 2065 w www.icconsulting.com.au
gifgGLupC88Dy.gif
Description: GIF image
