Chapter 6. Solutions for Local Site-to-Site High Availability
As we discussed in Chapter 5, “Designing for High Availability,” there are many ways to design for High Availability (HA) in IPsec virtual private network (VPN) designs. One critical design goal in an IPsec VPN requiring HA is to ensure that elements local to the VPN endpoint are designed with the required amount of redundancy. In this chapter, we will discuss those design alternatives available locally on the router, otherwise known as “local IPsec HA.” During our discussion, we will explore the advantages and disadvantages of each design, and we will wrap up with a summary comparison of those local HA design techniques previously discussed.
Using Multiple Crypto Interfaces for High ...
Get IPsec Virtual Private Network Fundamentals now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
