From owner-freebsd-cluster Mon Dec 17 0:19: 8 2001 Delivered-To: freebsd-cluster@freebsd.org Received: from web20102.mail.yahoo.com (web20102.mail.yahoo.com [216.136.226.39]) by hub.freebsd.org (Postfix) with SMTP id A2A5337B416 for ; Mon, 17 Dec 2001 00:19:02 -0800 (PST) Message-ID: <20011217081901.62776.qmail@web20102.mail.yahoo.com> Received: from [193.227.212.161] by web20102.mail.yahoo.com via HTTP; Mon, 17 Dec 2001 09:19:01 CET Date: Mon, 17 Dec 2001 09:19:01 +0100 (CET) From: =?iso-8859-1?q?Fabrizio=20Ravazzini?= Subject: vrrpd doesn't work To: freebsd-cluster@freebsd.org Cc: freebsd-isp@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Sender: owner-freebsd-cluster@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Hello all I've installed vrrpd 0.2 from the ports on freebsd 4.3, if I launch it I've got the errors: Indio# vrrpd -i ed0 -v 1 -p 150 192.168.0.90 Dec 16 21:01:27 Indio vrrpd[824]: starting Dec 16 21:01:27 Indio vrrpd[824]: router 1 init Dec 16 21:01:30 Indio vrrpd[824]: setting master 1 Dec 16 21:01:30 Indio vrrpd[824]: ioctl (set lladdr): Inappropriate ioctl for device Dec 16 21:01:30 Indio vrrpd[824]: ioctl (set lladdr): Inappropriate ioctl for device Dec 16 21:01:30 Indio vrrpd[824]: Can't SIOCADDMULTI on ed0: Can't assign requested address Dec 16 21:01:30 Indio vrrpd[824]: Can't SIOCADDMULTI on ed0: Can't assign requested address Any Ideas? Thanks bye ______________________________________________________________________ Iscriviti al Meglio della Settimana, la newsletter di Yahoo! Per saperne di pił vai alla pagina: http://buongiorno.yahoo.it To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-cluster" in the body of the message From owner-freebsd-cluster Mon Dec 17 0:38:17 2001 Delivered-To: freebsd-cluster@freebsd.org Received: from web20108.mail.yahoo.com (web20108.mail.yahoo.com [216.136.226.45]) by hub.freebsd.org (Postfix) with SMTP id 5761137B41B for ; Mon, 17 Dec 2001 00:38:12 -0800 (PST) Message-ID: <20011217083812.63311.qmail@web20108.mail.yahoo.com> Received: from [193.227.212.160] by web20108.mail.yahoo.com via HTTP; Mon, 17 Dec 2001 09:38:12 CET Date: Mon, 17 Dec 2001 09:38:12 +0100 (CET) From: =?iso-8859-1?q?Fabrizio=20Ravazzini?= Subject: Bridge/Firewall cluster? To: freebsd-cluster@freebsd.org Cc: freebsd-isp@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Sender: owner-freebsd-cluster@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Hello all I've done a bridge/firewall to connect a dmz to Internet,this is the scheme: Internet | | Router cisco | | rl0 Fbsd bridge/FW | rl1 | DMZ The public ip of the cisco is like 200.20.20.1 Then rl0 200.20.20.3. I want to make this bridge high available putting another freebsd bridge machine so that if one goes down there is the other and the dmz is still available. Can I put another Fbsd bridge between the cisco and the dmz like this scheme: Internet | | Router cisco | |________________ | rl0 | Fbsd |ed0 bridge/FW Fbsd | rl1 Bridge/FW |________________| | DMZ For example ed0 could be 200.20.20.5, perhaps is stupid question, but can it works? Or is there other solutions? Any help would be appreciated. Bye ______________________________________________________________________ Iscriviti al Meglio della Settimana, la newsletter di Yahoo! Per saperne di pił vai alla pagina: http://buongiorno.yahoo.it To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-cluster" in the body of the message From owner-freebsd-cluster Mon Dec 17 1:45:24 2001 Delivered-To: freebsd-cluster@freebsd.org Received: from wells.tecc.co.uk (wells.tecc.co.uk [195.217.37.90]) by hub.freebsd.org (Postfix) with ESMTP id 1ED6237B41E; Mon, 17 Dec 2001 01:45:16 -0800 (PST) Received: from leven (leven.tecc.co.uk [195.217.37.153]) by wells.tecc.co.uk (8.9.3+Sun/8.9.3) with SMTP id JAA11945; Mon, 17 Dec 2001 09:45:12 GMT From: "Andy" To: "Fabrizio Ravazzini" , Cc: Subject: RE: vrrpd doesn't work Date: Mon, 17 Dec 2001 09:45:12 -0000 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) In-reply-to: <20011217081901.62776.qmail@web20102.mail.yahoo.com> X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4807.1700 Importance: Normal Sender: owner-freebsd-cluster@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Funny, I thought I marked the vrrp port broken since it doesn't quite meet the RFC like the docs says they do. Anyhow, to get it working how you want include the -n switch on the command line. Regards Andy > -----Original Message----- > From: owner-freebsd-isp@freebsd.org > [mailto:owner-freebsd-isp@freebsd.org]On Behalf Of Fabrizio Ravazzini > Sent: 17 December 2001 08:19 > To: freebsd-cluster@freebsd.org > Cc: freebsd-isp@freebsd.org > Subject: vrrpd doesn't work > > > Hello all I've installed vrrpd 0.2 from the ports on > freebsd 4.3, if I launch it I've got the errors: > > Indio# vrrpd -i ed0 -v 1 -p 150 192.168.0.90 > Dec 16 21:01:27 Indio vrrpd[824]: starting > Dec 16 21:01:27 Indio vrrpd[824]: router 1 init > Dec 16 21:01:30 Indio vrrpd[824]: setting master 1 > Dec 16 21:01:30 Indio vrrpd[824]: ioctl (set lladdr): > Inappropriate ioctl for device > Dec 16 21:01:30 Indio vrrpd[824]: ioctl (set lladdr): > Inappropriate ioctl for device > Dec 16 21:01:30 Indio vrrpd[824]: Can't SIOCADDMULTI > on ed0: Can't assign requested address > Dec 16 21:01:30 Indio vrrpd[824]: Can't SIOCADDMULTI > on ed0: Can't assign requested address > > > Any Ideas? > Thanks bye > > > ______________________________________________________________________ > > Iscriviti al Meglio della Settimana, la newsletter di Yahoo! > Per saperne di pił vai alla pagina: http://buongiorno.yahoo.it > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-cluster" in the body of the message From owner-freebsd-cluster Wed Dec 19 10:39:47 2001 Delivered-To: freebsd-cluster@freebsd.org Received: from hermes.intergate.ca (hermes.intergate.ca [207.34.179.108]) by hub.freebsd.org (Postfix) with SMTP id 0993137B41A for ; Wed, 19 Dec 2001 10:39:39 -0800 (PST) Received: (qmail 98531 invoked by uid 1007); 19 Dec 2001 19:20:40 -0000 Received: from tim@ke.uu.net by hermes.intergate.ca with qmail-scanner-0.93 (uvscan: v4.0.50/v4176. . Clean. Processed in 0.745521 secs); 19/12/2001 11:20:40 Received: from gateway-208.181.231.146.intergate.ca (HELO r0u5c9.ke.uu.net) (208.181.231.146) by hermes.intergate.ca with SMTP; 19 Dec 2001 19:20:39 -0000 Message-Id: <5.1.0.14.0.20011219102837.0244c980@pop.uunet.co.ke> X-Sender: tpriebe@pop.uunet.co.ke X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Wed, 19 Dec 2001 10:34:50 -0800 To: Fabrizio Ravazzini , freebsd-cluster@freebsd.org From: Tim Priebe Subject: Re: Bridge/Firewall cluster? Cc: freebsd-isp@freebsd.org In-Reply-To: <20011217083812.63311.qmail@web20108.mail.yahoo.com> Mime-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1"; format=flowed Content-Transfer-Encoding: quoted-printable Sender: owner-freebsd-cluster@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG The problem with this is it would duplicate packets. My solution to this=20 was to not use bridging, but to route through the firewall, using dynamic=20 routing. As long as everything in the DMZ can understand some routing=20 protocol you will be fine. The Cisco advertises default to the two=20 firewalls, and the firewalls redistribute learned and directly connected=20 routes. You can limit which hosts you learn routes from in your firewall=20 rules, depending on the protocol used. Tim. At 09:38 AM 12/17/01 +0100, Fabrizio Ravazzini wrote: >Hello all I've done a bridge/firewall to connect a dmz >to Internet,this is the scheme: > > Internet > | > | > Router cisco > | > | rl0 > Fbsd bridge/FW > | rl1 > | > DMZ > >The public ip of the cisco is like 200.20.20.1 >Then rl0 200.20.20.3. >I want to make this bridge high available putting >another freebsd bridge machine so that if one goes >down there is the other and the dmz is still >available. >Can I put another Fbsd bridge between the cisco and >the dmz like this scheme: > > > Internet > | > | > Router cisco > | > |________________ > | rl0 | > Fbsd |ed0 > bridge/FW Fbsd > | rl1 Bridge/FW > |________________| > | > DMZ > >For example ed0 could be 200.20.20.5, perhaps is >stupid question, but can it works? >Or is there other solutions? >Any help would be appreciated. >Bye > > >______________________________________________________________________ > >Iscriviti al Meglio della Settimana, la newsletter di Yahoo! >Per saperne di pi=F9 vai alla pagina: http://buongiorno.yahoo.it > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-cluster" in the body of the message From owner-freebsd-cluster Thu Dec 20 5:53:59 2001 Delivered-To: freebsd-cluster@freebsd.org Received: from web20110.mail.yahoo.com (web20110.mail.yahoo.com [216.136.226.47]) by hub.freebsd.org (Postfix) with SMTP id 84B3B37B419 for ; Thu, 20 Dec 2001 05:53:51 -0800 (PST) Message-ID: <20011220135351.34424.qmail@web20110.mail.yahoo.com> Received: from [195.223.20.3] by web20110.mail.yahoo.com via HTTP; Thu, 20 Dec 2001 14:53:51 CET Date: Thu, 20 Dec 2001 14:53:51 +0100 (CET) From: =?iso-8859-1?q?Fabrizio=20Ravazzini?= Subject: Re: vrrpd doesn't work To: Damir Horvat Cc: freebsd-isp@freebsd.org, freebsd-cluster@freebsd.org In-Reply-To: <20011218083531.65d26d40.damir@voljatel.si> MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Sender: owner-freebsd-cluster@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG hello,thanks for reply, in that vrrpd is implemented the option -b prog or -m prog in order to execute some commands or scripts when they become master or backup? I've seen that vrrpd but didn't find this feature. Thanks --- Damir Horvat ha scritto: > On Mon, 17 Dec 2001 09:19:01 +0100 (CET) > Fabrizio Ravazzini wrote: > > > Hello all I've installed vrrpd 0.2 from the ports > on > > freebsd 4.3, if I launch it I've got the errors: > > > > Indio# vrrpd -i ed0 -v 1 -p 150 192.168.0.90 > > Dec 16 21:01:27 Indio vrrpd[824]: starting > > Dec 16 21:01:27 Indio vrrpd[824]: router 1 init > > Dec 16 21:01:30 Indio vrrpd[824]: setting master 1 > > Dec 16 21:01:30 Indio vrrpd[824]: ioctl (set > lladdr): > > Inappropriate ioctl for device > > Dec 16 21:01:30 Indio vrrpd[824]: ioctl (set > lladdr): > > Inappropriate ioctl for device > > Dec 16 21:01:30 Indio vrrpd[824]: Can't > SIOCADDMULTI > > on ed0: Can't assign requested address > > Dec 16 21:01:30 Indio vrrpd[824]: Can't > SIOCADDMULTI > > on ed0: Can't assign requested address > > Use freevrrpd instead. It's RFC 2338 Compliant. More > infos at > http://conan.lip6.fr/~spe/ > > I've try it and it works nice. Current DL version is > 0.8 which has error > in config file - space character after device name > ("fxp0 "). Get rid of > that space and it'll work. > > regards, > Damir Horvat > > -- > ................................. > Damir Horvat > System administrator > VOLJATEL telekomunikacije d.d. > Smartinska 106 > SI-1000 Ljubljana > Slovenia > > Tel. +386.(0)1.5875 832 > Fax. +386.(0)1.5875 899 > www.voljatel.si > E-mail: damir.horvat@voljatel.si > ................................. > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message ______________________________________________________________________ Iscriviti al Meglio della Settimana, la newsletter di Yahoo! Per saperne di pił vai alla pagina: http://buongiorno.yahoo.it To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-cluster" in the body of the message