On Tue, Dec 24, 2013 at 12:22 AM, Aristedes Maniatis <[email protected]> wrote: > I'd like to be able to terminate an IPSec tunnel against one of two different > remote endpoints (failover links at the remote end). This ticket exists, but > has notes to say that it might be done: > > https://redmine.pfsense.org/issues/1965 > > Is it actually done and I can define a 'gateway group'? To be clear I don't > want WAN interface failover at the pfsense end, but a way to bind to a second > IPSec peer endpoint in case the first endpoint goes down. >
Yes that is possible by binding the IPsec connection to a gateway group, that's new to 2.1. A number of people are using that in production. _______________________________________________ List mailing list [email protected] http://lists.pfsense.org/mailman/listinfo/list
