ipsec
Hello everybody,
I have an architecture with 24 IPSEC servers behind a BigIP 2000 cluster.
Customers are mobile phones configured with a public address as an IPSEC termination.
Each public address corresponds to a VS to which is attached a pool of 2 servers in priority group (a master and a slave).
In the 24 servers, each is master of a VS and slave of another VS, the distribution of customers is by region.
In order to have a more equitable distribution of customers (especially during the loss of a server), I try to set up a single VS with a pool containing all of my servers.
Is it possible to do that with LTM?
I can not find a solution, how to make persistence for such a flow with dynamic client addresses? In addition, the VPN connection is established in 2 times with UDP 4500 and UDP 500, how to make the second stream sent to the same server?
Thank you in advance for your help.