This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Max number of IpSec tunnels?

I wonder how many IpSec tunnels it is possible to configure on an Astaro Gateway?
And also if it is ok with dynamic ipadress for the remote endpoints, with no dyndns?

All the remote networks share the same /16 ip config, so we need to have all tunnels disabled without the one we are going to aksess. And only enable the tunnel we are going to use. The remote end vpn routers are also normally not connected to internet. And mostly using satellte internet connections.
So the load for the gateway will be minimal.

This thread was automatically locked due to age.

0 BAlfson over 13 years ago

I wonder how many IpSec tunnels it is possible to configure on an Astaro Gateway?

The practical limit is determined by the power of your hardware.

And also if it is ok with dynamic ipadress for the remote endpoints, with no dyndns?

At least one side must have a fixed IP or DynDNS support.

What devices will be at the other end of the tunnels?

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel
0 lb9ve over 13 years ago in reply to BAlfson

There will only be one endpoint active at a time. I think that we will have ca 250
endpoints in a few years. We are using Westermo Lynx as endpoints now. And a Westermo RedFox as the main router. The RedFox have a static ip. But it can only address 25 VPN tunnels. But it will work with dynamic ip adresses at the endpoints, as they initiates the connection. I hope to be able to exchange the redfox with a astaro gateway, as I am a bit familiar with Astaro.
Cancel
Vote Up 0 Vote Down

Cancel
0 BAlfson over 13 years ago

I don't know your security requirements, but, it sounds like you could use a single set of credentials for all of the remote devices and have a single 'Respond only' Site-to-Site connection configured on the Astaro.

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel