From owner-freebsd-security  Fri Oct  5  4:28:14 2001
Delivered-To: freebsd-security@freebsd.org
Received: from smtp1.sentex.ca (smtp1.sentex.ca [199.212.134.4])
	by hub.freebsd.org (Postfix) with ESMTP id A546037B403
	for <freebsd-security@FreeBSD.ORG>; Fri,  5 Oct 2001 04:28:11 -0700 (PDT)
Received: from chimp.sentex.net (cage.simianscience.com [64.7.134.1])
	by smtp1.sentex.ca (8.11.6/8.11.6) with ESMTP id f95BS8f86352;
	Fri, 5 Oct 2001 07:28:09 -0400 (EDT)
	(envelope-from mike@sentex.net)
Message-Id: <5.1.0.14.0.20011005072634.04919180@192.168.0.12>
X-Sender: mdtancsa@192.168.0.12
X-Mailer: QUALCOMM Windows Eudora Version 5.1
Date: Fri, 05 Oct 2001 07:28:06 -0400
To: Sheldon Hearn <sheldonh@starjuice.net>
From: Mike Tancsa <mike@sentex.net>
Subject: Re: HA/Failover options 
Cc: freebsd-security@FreeBSD.ORG
In-Reply-To: <74546.1002265663@axl.seasidesoftware.co.za>
References: <Your message of "Thu, 04 Oct 2001 22:12:10 -0400." <5.1.0.14.0.20011004220840.04858b48@192.168.0.12>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format=flowed
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

At 09:07 AM 10/5/2001 +0200, Sheldon Hearn wrote:
> > What do you have behind the firewall ? Are all the boxes capable of any
> > sort of dynamic routing ?  Using OSPF for example, you could have your 2
> > boxes advertising the default gateway, one with a more attractive cost 
> that
> > the other. Even Win2K has OSPF capabilities. It might be an easier way 
> to go.
>
>Where can I read more about this with respect to the "client" (sheltered
>hosts) and "server" (firewall hosts) configuration of such a network?


Dont know. Now that I think of it, apart from simple password issues, I 
dont recall any of the routing books I have used put routing in the context 
of security as opposed to merely discussing it from a functional point of view.

         ---Mike
--------------------------------------------------------------------
Mike Tancsa,                          	          tel +1 519 651 3400
Sentex Communications,     			  mike@sentex.net
Providing Internet since 1994                    www.sentex.net
Cambridge, Ontario Canada			  www.sentex.net/mike


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message