Date: Wed, 09 Jul 2008 03:26:37 -0700 From: Jason DiCioccio <jd@ods.org> To: Mark Pagulayan <m.pagulayan@auckland.ac.nz> Cc: "freebsd-pf@freebsd.org" <freebsd-pf@freebsd.org> Subject: Re: Suggestions on how to do Layer 2 load balacing with PF Message-ID: <4874925D.4020306@ods.org> In-Reply-To: <6E7521247AB3F04685C35F382AADE1B123932C7967@UXCHANGE7-2.UoA.auckland.ac.nz> References: <6E7521247AB3F04685C35F382AADE1B123932C7967@UXCHANGE7-2.UoA.auckland.ac.nz>
next in thread | previous in thread | raw e-mail | index | archive | help
Hey Mark, Mark Pagulayan wrote: > Hi Guys, > > I was just wondering if anyone of you have done layer 2 load balancing with PF. > > We tried to load balance traffic between two bridge firewall through OSPF, by putting equal weights on the router ports. But the problem we encountered is that when packet exits FW1 ( a state is created) it returns to FW2, the packet gets drop because the state created on FW1 has not yet synced on FW2. > The first thing that comes to my mind is changing the behavior on the router. Many routers allow you to choose how they forward in a situation with equal-cost paths. See below for the Juniper version of this. http://www.juniper.net/techpubs/software/junos/junos70/swconfig70-policy/html/policy-actions-config11.html Regards, -JD-
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4874925D.4020306>