New Content #11862
Document High Availability IPSec
High Availability is a great feature, but lacks documentation/examples in a couple of areas. I tried to set up a VTI site-to-site config, and while it did sync the config to the backup, it seemed to be only partially configured. For example, I had to assign the tunnel interface on the backup, as that didn't sync. Do I also need to set up the routes? (Seems not).
In the end, it still didn't fail-over properly when the master was shut down, leaving me to wonder, what else was missing?
The docs are silent on HA and IPSec, so it seems we need docs on (ideally) all aspects of HA and IPSec: tunnel, VTI and mobile, with examples if possible.
It's possible I'm running into bugs in 2.5.1, but it's hard to evaluate that without any idea of what to expect - docs would tell me that. I'll use the forum to figure out my issues in the interim.