From owner-freebsd-questions@freebsd.org  Tue May  5 06:50:53 2020
Return-Path: <owner-freebsd-questions@freebsd.org>
Delivered-To: freebsd-questions@mailman.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.nyi.freebsd.org (Postfix) with ESMTP id 45A2D2D9FFF
 for <freebsd-questions@mailman.nyi.freebsd.org>;
 Tue,  5 May 2020 06:50:53 +0000 (UTC) (envelope-from
 4250.82.1d4c10004ae074e.609eaafdaa14da7a55f332c575e25c9f@email-od.com)
Received: from s1-b0c6.socketlabs.email-od.com
 (s1-b0c6.socketlabs.email-od.com [142.0.176.198])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id 49GVjm2F9kz4Q89
 for <freebsd-questions@freebsd.org>; Tue,  5 May 2020 06:50:51 +0000 (UTC)
 (envelope-from
 4250.82.1d4c10004ae074e.609eaafdaa14da7a55f332c575e25c9f@email-od.com)
DKIM-Signature: v=1; a=rsa-sha256; d=email-od.com;i=@email-od.com;s=dkim;
 c=relaxed/relaxed; q=dns/txt; t=1588661452; x=1591253452;
 h=content-transfer-encoding:content-type:mime-version:references:in-reply-to:message-id:subject:to:from:date:x-thread-info;
 bh=8O5J4iaLmFVcn4iz+UoRgWKlXx5gz91liw3DU3lzGJs=;
 b=uZHsuUc9iZ2TZn0xfI8bZSgBh4Y2XptFD3ZPh63LEAb9y1/Evp9sG4s2dErxTiU53pK8CL4TPA+jvj2dX3B9Zd2vp9MlUqNyVlvBIdW5Y9gqnM8IXD7Yw/UM8txPg++GcNCb1Gu1HPI+pe4uFHQjrtdv2Rm5CI130Tm0hLs7QnE=
X-Thread-Info: NDI1MC45Mi4xZDRjMTAwMDRhZTA3NGUuZnJlZWJzZC1xdWVzdGlvbnM9ZnJlZWJzZC5vcmc=
Received: from r2.us-east-1.aws.in.socketlabs.com
 (r2.us-east-1.aws.in.socketlabs.com [142.0.191.2]) by mxsg2.email-od.com
 with ESMTP(version=Tls12 cipher=Aes256 bits=256);
 Tue, 5 May 2020 02:50:42 -0400
Received: from smtp.lan.sohara.org (EMTPY [185.202.17.215]) by
 r2.us-east-1.aws.in.socketlabs.com
 with ESMTP(version=Tls12 cipher=Aes256 bits=256);
 Tue, 5 May 2020 02:50:42 -0400
Received: from [192.168.63.1] (helo=steve.lan.sohara.org)
 by smtp.lan.sohara.org with smtp (Exim 4.92.3 (FreeBSD))
 (envelope-from <steve@sohara.org>) id 1jVrPc-000CXN-Pd
 for freebsd-questions@freebsd.org; Tue, 05 May 2020 07:50:40 +0100
Date: Tue, 5 May 2020 07:50:40 +0100
From: Steve O'Hara-Smith <steve@sohara.org>
To: freebsd-questions@freebsd.org
Subject: Re: Networking Routing Firewalling
Message-Id: <20200505075040.76b1bd1da33be994bdc3eed9@sohara.org>
In-Reply-To: <CAGBxaX=D13aDf806c=Mwr7ZxwbRcdcP-Xq94y_6Ux2NbDQaV+A@mail.gmail.com>
References: <CY4PR19MB16558D8B8076AEB6710DFC90F9A70@CY4PR19MB1655.namprd19.prod.outlook.com>
 <CAGBxaX=D13aDf806c=Mwr7ZxwbRcdcP-Xq94y_6Ux2NbDQaV+A@mail.gmail.com>
X-Mailer: Sylpheed 3.7.0 (GTK+ 2.24.32; amd64-portbld-freebsd12.0)
X-Clacks-Overhead: "GNU Terry Pratchett"
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Rspamd-Queue-Id: 49GVjm2F9kz4Q89
X-Spamd-Bar: -
Authentication-Results: mx1.freebsd.org;
 dkim=pass header.d=email-od.com header.s=dkim header.b=uZHsuUc9;
 dmarc=none; spf=pass (mx1.freebsd.org: domain of
 4250.82.1d4c10004ae074e.609eaafdaa14da7a55f332c575e25c9f@email-od.com
 designates 142.0.176.198 as permitted sender)
 smtp.mailfrom=4250.82.1d4c10004ae074e.609eaafdaa14da7a55f332c575e25c9f@email-od.com
X-Spamd-Result: default: False [-1.66 / 15.00]; ARC_NA(0.00)[];
 NEURAL_HAM_MEDIUM(-0.99)[-0.991,0];
 R_DKIM_ALLOW(-0.20)[email-od.com:s=dkim]; FROM_HAS_DN(0.00)[];
 R_SPF_ALLOW(-0.20)[+ip4:142.0.176.0/20];
 TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain];
 TO_DN_NONE(0.00)[]; DMARC_NA(0.00)[sohara.org];
 RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-1.00)[-0.997,0];
 RCVD_COUNT_THREE(0.00)[4];
 IP_SCORE(0.02)[ip: (-0.21), ipnet: 142.0.176.0/22(0.30), asn: 7381(0.08),
 country: US(-0.05)]; MV_CASE(0.50)[];
 DKIM_TRACE(0.00)[email-od.com:+];
 RCVD_IN_DNSWL_NONE(0.00)[198.176.0.142.list.dnswl.org : 127.0.15.0];
 FORGED_SENDER(0.30)[steve@sohara.org,4250.82.1d4c10004ae074e.609eaafdaa14da7a55f332c575e25c9f@email-od.com];
 MIME_TRACE(0.00)[0:+]; RCVD_TLS_LAST(0.00)[];
 ASN(0.00)[asn:7381, ipnet:142.0.176.0/22, country:US];
 FROM_NEQ_ENVFROM(0.00)[steve@sohara.org,4250.82.1d4c10004ae074e.609eaafdaa14da7a55f332c575e25c9f@email-od.com];
 MID_RHS_MATCH_FROM(0.00)[]
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.30
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions/>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 05 May 2020 06:50:53 -0000

On Tue, 5 May 2020 01:44:30 -0400
Aryeh Friedman <aryeh.friedman@gmail.com> wrote:

> This is a advanced beginner project but might be a good goal to strive for
> since it will demostrate the full power of networking and segmenting your
> machine into several "machines".   Note you should only do this if you
> have 4 or more cores, more then 4 GB of RAM and 100+ GB of disk available:

	For a lighter alternative follow Quantafac's suggestion of building
a network of jails - many years ago I simulated a complete two site system
with two sets of database, middleware and web front end servers running at
each site on a single machine and used it to test all the failover
scenarios (including the cross coupled dual master failover database
arrangement).

	It went into production as two physical machines at each site, each
one running one copy of the stack in three jails.

-- 
Steve O'Hara-Smith <steve@sohara.org>