cluster with gre tunnel ok, but ipsec no

A

ale.ab

Renowned Member
Mar 31, 2015
30
2
73
Bergamo, Italy
Hello,
i have two proxmox server in two datacenter and i would create a cluster for simply backup and administration...

I succesfully create a cluster with gre tunnel with this procedure...

for example
server1: 11.11.11.11 public ip
server2: 22.22.22.22 public ip

on server1
Code: 
# modprobe ip_gre
# ip tunnel add gre1 mode gre remote 22.22.22.22 local 11.11.11.11 ttl 255
# ip link set gre1 up
# ip addr add 10.10.10.1/24 dev gre1

on server2
Code: 
# modprobe ip_gre
# ip tunnel add gre1 mode gre remote 11.11.11.11 local 22.22.22.22 ttl 255
# ip link set gre1 up
# ip addr add 10.10.10.2/24 dev gre1

i can ping 10.10.10.1 and .2 correctly, so i create a cluster correctly.
But GRE tunnel are nor envrypted, and i would create a GRE + IPSEC tunnel but i don't understand how...

can someone help me?

Thank you in advance :D
 
ale.ab said:
i have two proxmox server in two datacenter and i would create a cluster for simply backup and administration...

I succesfully create a cluster with gre tunnel with this procedure...

for example
server1: 11.11.11.11 public ip
server2: 22.22.22.22 public ip


i can ping 10.10.10.1 and .2 correctly, so i create a cluster correctly.
But GRE tunnel are nor envrypted, and i would create a GRE + IPSEC tunnel but i don't understand how...
Click to expand...

That sounds quite tricky, is very interesting but not really a useful configuration: the idea of clustering is to have to nodes which are very close to each other and are connected by an exclusively for this purpose used network.

However, if you really like to have such a solution I recommend openvpn for establishing a reliable, encrypted point-to-point tunnel.
 
Ok, me too prefer openvpn but i don't understand how to configure...
Tun? Tap?
i try to configure in tun mode but not function...
i have a debian openvpn server and works correctly...

but proxmox has an interface VMBR and debian eth0...

in debian openvpn before i created certificates, then i have this config file
Code: 
port 1194
proto udp
dev tun
ca ca.crt
cert server.crt
key server.key
dh dh1024.pem
server 10.8.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
keepalive 10 120
comp-lzo
user nobody
group users
persist-key
persist-tun
status openvpn-status.log
verb 3
client-to-client

configuring iptables and client....

in debian works, but in proxmox no...

thank you
 
You must log in or register to reply here.

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Quick Navigation

Home Get Subscription Wiki Downloads Proxmox Customer Portal About

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!
Community platform by XenForo® © 2010-2024 XenForo Ltd.
Top Bottom
Back