From owner-freebsd-questions  Sun Mar  3 22:16:15 2002
Delivered-To: freebsd-questions@freebsd.org
Received: from topaz.mdcc.cx (topaz.mdcc.cx [212.204.230.141])
	by hub.freebsd.org (Postfix) with ESMTP id F11C937B400
	for <questions@freebsd.org>; Sun,  3 Mar 2002 22:16:12 -0800 (PST)
Received: from k7.mavetju.org (topaz.mdcc.cx [212.204.230.141])
	by topaz.mdcc.cx (Postfix) with ESMTP
	id 278032B6D2; Mon,  4 Mar 2002 07:16:00 +0100 (CET)
Received: by k7.mavetju.org (Postfix, from userid 1001)
	id DF7CF5C3; Mon,  4 Mar 2002 17:15:34 +1100 (EST)
Date: Mon, 4 Mar 2002 17:15:34 +1100
From: Edwin Groothuis <edwin@mavetju.org>
To: Chip Wiegand <chip@wiegand.org>, d01f1n@yahoo.com
Cc: questions@freebsd.org
Subject: Re: multiple defaultrouter
Message-ID: <20020304171534.H576@k7.mavetju.org>
References: <20020304001952.PLTC8848.mta02-svc.ntlworld.com@there> <005301c1c32f$21a623a0$1e01a8c0@lc.ca.gov> <20020303214112.2e786336.chip@wiegand.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5.1i
In-Reply-To: <20020303214112.2e786336.chip@wiegand.org>; from chip@wiegand.org on Sun, Mar 03, 2002 at 09:41:12PM +0000
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

On Sun, Mar 03, 2002 at 09:41:12PM +0000, Chip Wiegand wrote:
> On Sun, 3 Mar 2002 19:46:11 -0800
> "Drew Tomlinson" <drew@mykitchentable.net> wrote:
> 
> > ----- Original Message -----
> > From: "Mike D" <d01f1n@yahoo.com>
> > To: <questions@freebsd.org>
> > Sent: Sunday, March 03, 2002 4:19 PM
> > Subject: multiple defaultrouter
> > 
> > 
> > > I have a machine that sits in the dmz and needs to be use 2
> > > firewalls as
> > > gateways as possible, otherwise one firewall does not not know what
> > > to do
> > > with traffic intended for the other one.
> > >
> > > Basically, how do i specify 2 "defaultrouter"s for 1 machine?
> > 
> > I don't think this is possible.  What exactly are you trying to do? 
> > Can you include a diagram of your setup?
> > 
> > Drew
> 
> I'd be interested in the answer to this also. I know it's possible on a
> winNT box - to have two differant gateways. If it's possible on a
> winblows box, then it must be possible on a FreeBSD box, right? ;-)

But what does it do then?
Does it send every other packet to the other gateway or is it saving
the second one in case the first one dies?

Honestly, the problem of this guy (two firewalls) is a problem in
the fact that his firewalls can't resume statefull sessions if one
dies. Big deal, this has always been a problem. What he should do
is make a firewall-pair which have one unique IP address (per server)
and one shared IP address. They have to monitor each other and the
standby one has to take over the moment the active one isn't working
anymore. The shared IP address is the one which is his default
gateway.

Edwin

-- 
Edwin Groothuis   |              Personal website: http://www.MavEtJu.org
edwin@mavetju.org |           Interested in MUDs? Visit Fatal Dimensions:
------------------+                       http://www.FatalDimensions.org/

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message