I have a similar setup running over OpenVPN tunnels. My guess would be you won't be able to do it over an IPSEC tunnel, because it happens at too low of a level to be able to interact with it using OSPF or BGP. I use OpenBGPd (running on the pfsense firewall) and it will fail over to the secondary tunnel in case one goes down. We only have 2 connections at our primary site, so two tunnels are sufficient.
If you wanted to be able to handle multiple link failures, you probably would need 4 tunnels (between each possible pair of endpoints). I haven't tried this, but maybe you could set up load balancing over the multiple tunnels, rather than using BGP/OSPF. I know there were a lot of changes to the load balancer in 2.0, and I haven't had time to play around with it. But if you can specify the gateway set to use based on the destination IP, that might be feasible. On Thu, May 23, 2013 at 12:33 PM, [email protected] <[email protected]>wrote: > On 5/23/2013 11:55 AM, Chris Bagnall wrote: > >> On 23/5/13 4:46 pm, [email protected] wrote: >> >>> And I use Quagga OSPF to handle the routing/failover. >>> >> >> Shame it can't all be done on the pfSense box though. I seem to recall >> there was an OSPF package in the dim and distant past, but I've no idea if >> it's still being maintained... >> >> Kind regards, >> >> Chris >> > > Oh, you misunderstood. That is the name of the OSPF Package pfSense uses > for OSPF. > > Jonathon > > ______________________________**_________________ > List mailing list > [email protected] > http://lists.pfsense.org/**mailman/listinfo/list<http://lists.pfsense.org/mailman/listinfo/list> >
_______________________________________________ List mailing list [email protected] http://lists.pfsense.org/mailman/listinfo/list
