From owner-freebsd-pf@FreeBSD.ORG  Wed Dec  8 20:57:45 2004
Return-Path: <owner-freebsd-pf@FreeBSD.ORG>
Delivered-To: freebsd-pf@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id B875616A4CE
	for <freebsd-pf@freebsd.org>; Wed,  8 Dec 2004 20:57:45 +0000 (GMT)
Received: from mail.secureworks.net (mail.secureworks.net [209.101.212.155])
	by mx1.FreeBSD.org (Postfix) with SMTP id D6DC243D53
	for <freebsd-pf@freebsd.org>; Wed,  8 Dec 2004 20:57:44 +0000 (GMT)
	(envelope-from mdg@secureworks.net)
Received: (qmail 54096 invoked from network); 8 Dec 2004 20:57:43 -0000
Received: from unknown (HELO ?192.168.8.243?) (209.101.212.253)
  by mail.secureworks.net with SMTP; 8 Dec 2004 20:57:43 -0000
Message-ID: <41B76AC7.9080907@secureworks.net>
Date: Wed, 08 Dec 2004 15:57:43 -0500
From: Matthew George <mdg@secureworks.net>
User-Agent: Mozilla Thunderbird 0.9 (X11/20041117)
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: freebsd-pf@freebsd.org
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Subject: CARP implementation questions
X-BeenThere: freebsd-pf@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Technical discussion and general questions about packet filter (pf)
	<freebsd-pf.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-pf>
List-Post: <mailto:freebsd-pf@freebsd.org>
List-Help: <mailto:freebsd-pf-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 08 Dec 2004 20:57:45 -0000


First, I have a question regarding load balancing. From reading the 
description on how to configure arpbalance with CARP, I get the 
impression that it's an all or nothing proposition.  Is that really the 
case?  I have a project where I will need to enable CARP on a pair of 
multi-interface firewall/routers.  Some of the connected networks make 
sense for arpbalance.  If I turn it on, am I required to have a pair of 
carp interfaces configured for each physical interface? Can I use dual 
vhid's for some networks and single vhid's for others?

Second, I'd like to know if anyone has set up CARP alongside a routing 
daemon of some sort (zebra, quagga, etc).  I'm particularly interested 
in how the daemons handle things like OSPF/RIP updates.  I should 
obviously be trying to set the gateway to the CARP address, but I'm not 
sure that's the easiest thing to do.  Has anyone looked into this yet?

-- 
Matthew George
SecureWorks Technical Operations
404.327.6339