|
Hello...
Following in the list with the topic
"FreeS/WAN Cluster - any experiences?"
until
http://www.in-addr.de/pipermail/lvs-users/2002-February/004817.html
and reading
http://www.linuxvirtualserver.org/~julian/LVS_IPSEC.txt
http://www.linuxvirtualserver.org/Joseph.Mack/HOWTO
My LVS-DR is now need to combine with IPSec,
since the machine is nokia ip330 with 3 eepro100...
(it was have a minimum Checkpoint license, now have no money more).
considering to use the max traffic up to 10 mbps
so now it will handling the firewalling, routing and encryption.
LVS-DR has been tested and running well (so far).
FreeSWAN has been tested on Real IP (which is this RIP
will be a VIP later, CMIIW).
Connecting to Checkpoint VPN gateway has been established using RIP.
Perhaps I'm too newbie, so i need examples or sucess stories...
to deploy IPSec on LVS-DR.
Could anybody like to give me some hints?
installed :
-----------
slackware-linux 8.0 kernel 2.4.20 gcc version 3.2
linux-2.4.20-ipvs-1.0.9.patch
hidden-forward_shared-2.4.20-3.diff
ipvsadm v1.21 2002/11/12 (compiled with popt and IPVS v1.0.9)
freeswan 2.02 with x509-1.4.6-freeswan-2.02
I just 'stole' the picture (words too) from Henrik Rossner
and modified it to my needs.
enc-dom
|
|
CP-VPN-gw
|
|
_^_
__/ \__
/ \
< internet >
\__ __/
\_ _/
V
|
|
+------------------+ +--------------+
| Director |-----| Public IP(s) |
+------------------+ +--------------+
|
|
+---------------+-----------------+
| | |
+--------------+ +--------------+ +--------------+
|Real Server(s)| |Real Server(s)| | Real Server |
| www | |MS Application| | IPsec term. |
+--------------+ +--------------+ +--------------+
| | |
+---------------+-----------------+
|
|
+-----+------+
| |
+--------------+ +--------------+
| dB | | MS COM |
+--------------+ +--------------+
Thank you for the help.
Wezt Wisnu
|
