Date: Thu, 27 Mar 2003 12:39:45 +0200 From: Giorgos Keramidas <keramida@ceid.upatras.gr> To: Michael Richards <michael@fastmail.ca> Cc: freebsd-security@freebsd.org Subject: Re: Multiple Firewalls with ipfilter? Message-ID: <20030327103945.GA8208@gothmog.gr> In-Reply-To: <3E82386C.000003.20487@ns.interchange.ca> References: <3E82386C.000003.20487@ns.interchange.ca>
next in thread | previous in thread | raw e-mail | index | archive | help
On 2003-03-26 18:31, Michael Richards <michael@fastmail.ca> wrote: > The problem here is really 2 pronged: > 1) I need some means of realising that the firewall just died and > transparently switching over to the backup or load balancing the two > so if one dies the other takes up the slack. > > 2) I need a means of syncing the state info so existing connections > won't be torn down if they end up going through the other firewall. Hmmm, you could probably do some ingenious stuff with ipfs and a shared disk partition, where the 'active' firewall save its state periodically. When this falls over, the code that handles the switch to the 'backup' machine could reload the state from the shared disk :)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030327103945.GA8208>