It can be done. You'll need a load balancer with persistence.
Chris Timmons wrote:
I am curious to see if there is any way you can distribute openvpn to a
cluster of firewalls? I am thinking specifically of two or more Soekris
4801+vpn1411 cards, all clustered with Openbsd 3.5+carp+pfsync.
I have tried it, but I could not get it to work. The vpn connection
would continually reset after a minute or so as it would jump from one
box to the other and back. I can point clients at specific machines or
ports, but that loses all scalability.
Ideas? Thoughts? Too ambitious? Cluebat?
Thanks,
Chris.
