Community discussions

MikroTik App
 
leonset
Member Candidate
Member Candidate
Topic Author
Posts: 256
Joined: Wed Apr 01, 2009 9:09 pm

Using two EoIP tunnels to load balance IPSec VPN among 2 WAN

Thu Mar 17, 2011 11:07 am

Hello,

I'm trying to figure out a way to load balance and failover an IPSec VPN among my remote office (2 ISP) and my central office (one ISP).

I'm thinking on setting up two EoIP tunnel at the remote office, each one using one ISP, and then create a bonding with both. Then, I would add an IP to the bonding and set up IPSec policy to use that as source IP. I believe that I should set IPSec in transport mode instead of tunnel mode, no sure at this point...

Should that work? Has anyone tested something like that? Is there any other way to create an IPSec tunnel among 2 or more WAN's?

Thank you!
 
jtroybailey
Member Candidate
Member Candidate
Posts: 176
Joined: Thu Oct 07, 2010 10:24 am
Location: Brisbane, Australia

Re: Using two EoIP tunnels to load balance IPSec VPN among 2

Thu Mar 17, 2011 2:11 pm

you would setup IPSEC on each WAN IP address, as far as i know, thats the only help i can offer so far.
 
leonset
Member Candidate
Member Candidate
Topic Author
Posts: 256
Joined: Wed Apr 01, 2009 9:09 pm

Re: Using two EoIP tunnels to load balance IPSec VPN among 2

Thu Mar 17, 2011 2:35 pm

Yeah, but you can't have the same policy for both WAN's... You have to split the traffic among 2 tunnels somehow: source/dest TCP ports, source/dest IP addresses... So you don't get "real" load balancing in realtime, but a "manual" load balancing at configuration time.

Thanks!
 
leonset
Member Candidate
Member Candidate
Topic Author
Posts: 256
Joined: Wed Apr 01, 2009 9:09 pm

Re: Using two EoIP tunnels to load balance IPSec VPN among 2

Wed Mar 23, 2011 6:17 pm

Hi!

Does anyone else have any suggestion? Would be greatly appreciated!

Thanks in advance.

Who is online

Users browsing this forum: No registered users and 13 guests