From owner-freebsd-net@FreeBSD.ORG Sun Jan 15 00:43:44 2006 Return-Path: X-Original-To: freebsd-net@FreeBSD.org Delivered-To: freebsd-net@FreeBSD.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0895816A423 for ; Sun, 15 Jan 2006 00:43:44 +0000 (GMT) (envelope-from glebius@FreeBSD.org) Received: from cell.sick.ru (cell.sick.ru [217.72.144.68]) by mx1.FreeBSD.org (Postfix) with ESMTP id CCF2743D64 for ; Sun, 15 Jan 2006 00:43:38 +0000 (GMT) (envelope-from glebius@FreeBSD.org) Received: from cell.sick.ru (glebius@localhost [127.0.0.1]) by cell.sick.ru (8.13.3/8.13.3) with ESMTP id k0F0hNFU014291 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Sun, 15 Jan 2006 03:43:24 +0300 (MSK) (envelope-from glebius@FreeBSD.org) Received: (from glebius@localhost) by cell.sick.ru (8.13.3/8.13.1/Submit) id k0F0hMlo014290; Sun, 15 Jan 2006 03:43:22 +0300 (MSK) (envelope-from glebius@FreeBSD.org) X-Authentication-Warning: cell.sick.ru: glebius set sender to glebius@FreeBSD.org using -f Date: Sun, 15 Jan 2006 03:43:22 +0300 From: Gleb Smirnoff To: Tiago Cruz Message-ID: <20060115004322.GL83922@FreeBSD.org> Mail-Followup-To: Gleb Smirnoff , Tiago Cruz , "freebsd-net@FreeBSD.org" References: <1136999785.5995.147.camel@localhost.localdomain> <20060112154527.GV57606@FreeBSD.org> <1137087349.10917.48.camel@localhost.localdomain> Mime-Version: 1.0 Content-Type: text/plain; charset=koi8-r Content-Disposition: inline In-Reply-To: <1137087349.10917.48.camel@localhost.localdomain> User-Agent: Mutt/1.5.6i Cc: "freebsd-net@FreeBSD.org" Subject: Re: Help with CARP implementation X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 15 Jan 2006 00:43:44 -0000 On Thu, Jan 12, 2006 at 03:35:49PM -0200, Tiago Cruz wrote: T> > There are examples in 'man 4 carp'. T> T> Yes, I've read all the FAQ from OpenBSD from CARP, man pages of carp and T> pfsync. But the better article about this I found here: T> T> http://www.samag.com/documents/s=9658/sam0505e/ T> T> Following this I can do my redundancy in my LAN interface, BUT: T> T> When I has downloading something, and do a reboot in MASTER firewall, T> the download is not continued. T> T> Is because I have 02 external links, one in each WAN interface? Probably yes. Are you doing NAT and each link has NAT to a different IP address? In this case you can't achieve such level of redundancy that TCP sessions will survive failure of the one link. T> What arp balance do exactly? It will be good for my? You probably don't need it. T> And... I need to use ifstated? Only if you need to do something in case of CARP changing state. -- Totus tuus, Glebius. GLEBIUS-RIPN GLEB-RIPE