Load balancing inbound IPSec GRE tunnels
Posted on 2009-12-28
I have 1200 sites (site to site, no client VPN software) that I want to connect using DMVPNs, hub and spoke style. I am trying to figure out how to get head-end redundancy and reliability. I'm thinking that I could load balance the inbound tunnel connections and I cant think of a reason why not. I'd use pre-shared keys and load balance using Catalyst 6500 with server load balancing, and farm out the IPSec/GRE tunnels based on data volume or number of connected tunnels.
I haven't done anything like this on this scale and need some help.