|
subcon
Guest
|
 |
« on: April 13, 2010, 02:36:45 PM » |
|
Greetings,
I am running a series of software VPN servers. I have a group of road warriors that connect from various operating systems. Basically, the components are:
* Linux server running:
* l2tpns (layer 2 tunneling protocol implementation)
* pluto (ipsec)
l2tpns claims to support clustering, by means of a multicast address which other servers (peers) listen on to support load-balancing, failover, etc etc.
However, the documentation pertaining to what I need to do my border router/firewall is extremely vague. It LITERALLY says:
"For a cluster, configure the members as BGP neighbours on your router and configure multi-path load-balancing. Cisco uses maximum-paths ibgp for IBGP. If this is not supported by your IOS revision, you can use maximum-paths (which works for EBGP) and set as_number to a private value such as 64512"
My end desired result would be this:
* Multiple l2tpns servers sharing a common multicast addr (239.192.13.13 is the config default).
* These servers each are set up on our Juniper NetScreen-ISG 2000 (or SSG 140 for my demo/testing purposes) as BGP NEIGHBORS (I think).
* Single public IPv4 address refers to this BGP "instance".
Am I making sense?
I guess what I am looking for here is one or more of the following:
* A good document referral for my purposes, telling me how to accomplish the above on the Juniper-side of my network.
* A skilled juniper ninja on this forum to give my pointers on any errors in my BGP-thinking.
Thank you,
subcon
|
