We are in the process of designing a GET VPN solution. Each client A,B,C has an HO and DR. A-HO,B-HO,C-HO are inter-connected same with A-DR,B-DR,C-DR. Naturally bet. HO & DR are connected as well. Assuming client A-HO will be the HUB for B-HO & C-HO and A-DR will be the HUB for B-DR & C-DR, based on the doc I have read we can deploy Key Server 1 in A-HO and Key Server 2 A-DR.
Q1. Is it required to deploy Group Member Router to A-HO and A-DR along with Key Server? Can the Key Server will be the Group-Member as well?
Q2. Is there any license required to enable the redundancy on Key Servers on the same site?
Q3. If the Key Servers are in A-HO and A-DR will it require a license?
Q4. Is it possible to deploy a redundant Group-Member? For Active-Standby scenario, will it interrupt the tunnel the moment it will switch-over?
Appreciate if you could clarify these issues.