|
||||||||||
Now I need to use vrrp, because other software in my network understand this protocol ( like keepalived ). But the current freevrrpd version ( 0.8.7 ) have a problem with device drivers who don't support ioctl call : SIOCGIFMEDIA. Correction was made in current cvs version, so now I'll try with cvs version. I'm going to have a look on carp, it's really interresting and do all what I need but without vrrp. did you already test this config ( pfsync + carp ) ? Selon "Grilli, Laurent" <lgrilli at be dot tiauto dot com>: > Perhaps just to late but have a look at carp > http://www.countersiege.com/doc/pfsync-carp/ > > This one seems the prefered way for openBSD folks and it has been ported to > FreeBSD ... 5.x > http://pf4freebsd.love2party.net/carp.html > > And just for my knowledge, it would be nice to know what Manuel think about > using pf/altq under Freebsd in the future as a replacement of ipfw > dummynet/ipfilter ? I know that current is not yet the way to go... > > > Anyway thanks for this great product ! > > Laurent > > -----Original Message----- > From: Chris Dionissopoulos [mailto:dionch at freemail dot gr] > Sent: mercredi 21 avril 2004 23:26 > To: Mohamed Badri; m0n0wall at lists dot m0n0 dot ch > Subject: Re: [m0n0wall] monowall + vrrp > > Some advices: > > --Update ipfilter with version 4.1.1 to take advandance of State > syncronizing between firewalls (filter+NAT). > > --Make your Master and Backup scripts to execute syncronizing tools.(master > sends states, slave read states) > > --Also, if you have a spare NIC , use it only for syncing firewalls. > > If you need any help, just tell me. > chris. > > > ----- Original Message ----- > From: "Mohamed Badri" <mohamed at netbadri dot com> > To: <m0n0wall at lists dot m0n0 dot ch> > Sent: Thursday, April 22, 2004 12:20 AM > Subject: [m0n0wall] monowall + vrrp > > > > Hi, > > > > Just to say that I started adding freevrrpd to monowall ( for now, cdrom > version > > ) to implement fail over with vrrp protocol. > > > > I need 2 firewalls who work in active/standby mode. The slave firewall > will have > > the same config as the master one ( except somme parameters like firewall > main > > ip, priority, etc ... ) > > > > If I have some time, I'll probably add the php code to manage freevrrpd > > configuration , firewall state ( master, slave ) and firewall rules > replication > > to the slave node. > > > > let me know if someone is interested. > > > > Thanks for this product. > > > > freevrrpd : http://www.b0l.org/?idcategory=3&idsection=1 > > > > mohamed at netbadri dot com > > > > --------------------------- > > http://webmail.netbadri.com > > > > --------------------------------------------------------------------- > > To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch > > For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch > > > > > ____________________________________________________________________ > http://www.freemail.gr - äùñåÜí õðçñåóßá çëåêôñïíéêïý ôá÷õäñïìåßïõ. > http://www.freemail.gr - free email service for the Greek-speaking. > > --------------------------------------------------------------------- > To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch > For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch > > --------------------------------------------------------------------- > To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch > For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch > > ----------------------------------------------- ! Mohamed BADRI mohamed at netbadri dot com ! ! ! ! Gnu/Linux et Logiciels Libres ! ! Sair Linux and GNU Certified Professional ! ! ----------- ! ! 11 rue Mottet de Gerando ! ! 69001 Lyon ! ! ----------- ! ! Tel. 04.72.98.81.46 / 06.72.71.71.94 ! ----------------------------------------------- --------------------------- http://webmail.netbadri.com |