From owner-freebsd-cluster@FreeBSD.ORG  Sun Apr  9 11:53:30 2006
Return-Path: <owner-freebsd-cluster@FreeBSD.ORG>
X-Original-To: freebsd-cluster@freebsd.org
Delivered-To: freebsd-cluster@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 6B00316A401
	for <freebsd-cluster@freebsd.org>; Sun,  9 Apr 2006 11:53:30 +0000 (UTC)
	(envelope-from craig001@lerwick.hopto.org)
Received: from lerwick.hopto.org (81-86-32-239.dsl.pipex.com [81.86.32.239])
	by mx1.FreeBSD.org (Postfix) with SMTP id 70F6343D46
	for <freebsd-cluster@freebsd.org>; Sun,  9 Apr 2006 11:53:29 +0000 (GMT)
	(envelope-from craig001@lerwick.hopto.org)
Received: (qmail 29552 invoked by uid 7797); 9 Apr 2006 11:53:27 -0000
Received: from 192.168.0.5 by dell-lerwick.hopto.org (envelope-from
	<craig001@lerwick.hopto.org>, uid 7791) with qmail-scanner-1.25 
	(sweep: 2.25.1/3.87.0. f-prot: 4.4.3/3.14.11. spamassassin: 3.0.4.  
	Clear:RC:1(192.168.0.5):. 
	Processed in 17.936701 secs); 09 Apr 2006 11:53:27 -0000
X-Qmail-Scanner-Mail-From: craig001@lerwick.hopto.org via
	dell-lerwick.hopto.org
X-Qmail-Scanner: 1.25 (Clear:RC:1(192.168.0.5):. Processed in 17.936701 secs)
Received: from unknown (HELO ?192.168.0.5?) (192.168.0.5)
	by lerwick.hopto.org with SMTP; 9 Apr 2006 11:53:09 -0000
Message-ID: <4438F5A4.9030003@lerwick.hopto.org>
Date: Sun, 09 Apr 2006 12:53:08 +0100
From: Craig Butler <craig001@lerwick.hopto.org>
User-Agent: Mozilla Thunderbird 1.0.7-1.1.fc3 (X11/20050929)
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: freebsd-cluster@freebsd.org
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Subject: vpn redundancy
X-BeenThere: freebsd-cluster@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Clustering FreeBSD <freebsd-cluster.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-cluster>, 
	<mailto:freebsd-cluster-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-cluster>
List-Post: <mailto:freebsd-cluster@freebsd.org>
List-Help: <mailto:freebsd-cluster-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-cluster>,
	<mailto:freebsd-cluster-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 09 Apr 2006 11:53:30 -0000

Hello List

I would like to know if it is possible to have failover vpn using FreeBSD ?

I am thinking about following some instructions I have found to create 
redundant firewalls, but I am not sure how to make the two boxes share 
the vpn/ipsec stuff.

Any help would be appreciated.

Thank you

Craig B

From owner-freebsd-cluster@FreeBSD.ORG  Mon Apr 10 02:53:46 2006
Return-Path: <owner-freebsd-cluster@FreeBSD.ORG>
X-Original-To: freebsd-cluster@freebsd.org
Delivered-To: freebsd-cluster@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 903B416A401
	for <freebsd-cluster@freebsd.org>; Mon, 10 Apr 2006 02:53:46 +0000 (UTC)
	(envelope-from tarc@tarc.po.cs.msu.su)
Received: from tarc.po.cs.msu.su (tarc.po.cs.msu.su [158.250.16.33])
	by mx1.FreeBSD.org (Postfix) with ESMTP id A706743D46
	for <freebsd-cluster@freebsd.org>; Mon, 10 Apr 2006 02:53:45 +0000 (GMT)
	(envelope-from tarc@tarc.po.cs.msu.su)
Received: from tarc.po.cs.msu.su (localhost [127.0.0.1])
	by tarc.po.cs.msu.su (8.13.4/8.13.4) with ESMTP id k3A2spC4085566
	for <freebsd-cluster@freebsd.org>; Mon, 10 Apr 2006 06:54:51 +0400 (MSD)
	(envelope-from tarc@tarc.po.cs.msu.su)
Received: (from tarc@localhost)
	by tarc.po.cs.msu.su (8.13.4/8.13.4/Submit) id k3A2spPd085565
	for freebsd-cluster@freebsd.org; Mon, 10 Apr 2006 06:54:51 +0400 (MSD)
	(envelope-from tarc)
Date: Mon, 10 Apr 2006 06:54:51 +0400
From: Tarc <tarc@tarc.po.cs.msu.su>
To: freebsd-cluster <freebsd-cluster@freebsd.org>
Message-ID: <20060410025451.GM786@tarc.po.cs.msu.su>
References: <4438F5A4.9030003@lerwick.hopto.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=koi8-r
Content-Disposition: inline
In-Reply-To: <4438F5A4.9030003@lerwick.hopto.org>
User-Agent: mutt-ng/devel-r581 (FreeBSD)
Subject: Re: vpn redundancy
X-BeenThere: freebsd-cluster@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Clustering FreeBSD <freebsd-cluster.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-cluster>, 
	<mailto:freebsd-cluster-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-cluster>
List-Post: <mailto:freebsd-cluster@freebsd.org>
List-Help: <mailto:freebsd-cluster-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-cluster>,
	<mailto:freebsd-cluster-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 10 Apr 2006 02:53:46 -0000

On Sun, Apr 09, 2006 at 12:53:08PM +0100, Craig Butler wrote:
> Hello List
> 
> I would like to know if it is possible to have failover vpn using FreeBSD ?
> 
> I am thinking about following some instructions I have found to create redundant firewalls, but I am not sure how to make the two boxes 
> share the vpn/ipsec stuff.
> 
> Any help would be appreciated.
> 
> Thank you
> 
> Craig B
Can security/openvpn port help you in your solution?

-- 
   Best regards,
   	Arseny Nasokin