|
Henrik Rossner wrote:
Hello,
we plan to substitute a commercial product with FreeS/WAN
(www.freeswan.org) under Linux . As we expect high traffic rates
(100MBit wirespeed, in the future even 5 times more) we thought about
building a cluster. Using LVS seems to be a good choice.
As the commercial product is very expensive, we can afford a number of
quite nice Servers (we think about Dell Power Edge 1550, 1Gig Ram).
Are there any experiences (good or bad ones) with
- clustering IPSec for load-sharing
- LVS in combination with FreeS/WAN
LVS can work with FreeS/WAN but the config is complex.
For e.g. you need to use iproute2 to create 2 routing
tables (the second being used to support connections
from an ipsec tunnel to a virtual service).
Padraig.
|
