Date: Sat, 11 Dec 2004 22:56:52 +0100 From: Max Laier <max@love2party.net> To: Mathieu Arnold <mat@freebsd.org> Cc: freebsd-pf@freebsd.org Subject: Re: Carp and port trunking Message-ID: <200412112256.58443.max@love2party.net> In-Reply-To: <DA99FE2F0D69001A95764DA9@[192.168.1.5]> References: <5599FA52E9B4863293C1B5C0@[192.168.1.5]> <200412112047.57337.max@love2party.net> <DA99FE2F0D69001A95764DA9@[192.168.1.5]>
next in thread | previous in thread | raw e-mail | index | archive | help
--nextPart1226600.shx2Og53BT Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Saturday 11 December 2004 21:02, Mathieu Arnold wrote: > +-Le 11/12/2004 20:47 +0100, Max Laier a dit : > | On Saturday 11 December 2004 20:26, Mathieu Arnold wrote: > |> Hi, > |> > |> I've been wondering, would it be possible to use Carp on two routers in > |> load balancing mode, connected to 2 trunked ports a switch ? > | > | Not entirely sure what you mean. Could you try to draw an ascii "art" of > | what you have in mind? > > Oh, hum, will that get you in what I have in mind > > outside > > +----+ +----+ > | R1 |--pfsync--| R2 | > +----+ +----+ > \ Carp here / > \ / > \ / > \ / > \ / trunk on those 2 ports > +-------------------+ > | switch | > +-------------------+ > > customers here > > > In that case, both routers always work, the switch is sending packets to > one or the other as the ports leading to them are trunked. > > Is that clear enough ? Yes. But I am afraid that this will not work. The CARP loadbalancing works= =20 based on client MAC address. On receive we calculate a hash and determine i= f=20 we or the other server is responsible and answer accordingly. With trunking= =20 it might happen that a request is send to the wrong server, which will not= =20 reply as it thinks the other one is responsible. Depending on the routing situation "above" your picture it might be possibl= e=20 to do it with pfsync alone - i.e. no CARP required, just let the trunking d= o=20 the load balance. Failover is not easily possible with trunking anyhow. =2D-=20 /"\ Best regards, | mlaier@freebsd.org \ / Max Laier | ICQ #67774661 X http://pf4freebsd.love2party.net/ | mlaier@EFnet / \ ASCII Ribbon Campaign | Against HTML Mail and News --nextPart1226600.shx2Og53BT Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.6 (FreeBSD) iD8DBQBBu20qXyyEoT62BG0RAmIGAJsGYK+aPKIrcDOC5mifJOdLxdRoRACbBVjr UlmNacgzwpOFmvCmwqGefY8= =RL8H -----END PGP SIGNATURE----- --nextPart1226600.shx2Og53BT--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200412112256.58443.max>