From owner-freebsd-questions@FreeBSD.ORG Wed Jul 13 01:44:34 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8DB1116A41C for ; Wed, 13 Jul 2005 01:44:34 +0000 (GMT) (envelope-from freebsd@meijome.net) Received: from sigma.octantis.com.au (sigma.octantis.com.au [207.44.188.23]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3C43943D46 for ; Wed, 13 Jul 2005 01:44:34 +0000 (GMT) (envelope-from freebsd@meijome.net) Received: (qmail 26130 invoked from network); 13 Jul 2005 11:44:33 +1000 Received: from unknown (HELO ?192.168.13.3?) (202.59.110.3) by sigma.octantis.com.au with (DHE-RSA-AES256-SHA encrypted) SMTP; 13 Jul 2005 11:44:33 +1000 Message-ID: <42D471FC.3000702@meijome.net> Date: Wed, 13 Jul 2005 11:44:28 +1000 From: Norberto Meijome User-Agent: Mozilla Thunderbird 1.0.2 (Windows/20050317) X-Accept-Language: en-us, en MIME-Version: 1.0 To: FreeBSD Questions Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: Service redundancy : CARP, wackmole/spread, 4.x / 5.x X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 13 Jul 2005 01:44:34 -0000 Hi all, I'm looking into adding some automatic failover for some services. I'd like to hear comments / advice on suitability of either CARP / FreeVRRP / wackamole + spread for these 2 different setups (see below) The setups are completelly independent of each other, so different solutions / approaches for each are OK. Of course, I'm not interested in adding special hardware to do any of this, but if there are *significant* advantages of a hardware solution, i'd like to hear too :). Setup 1) : - FreeBSD 4.11 Server, 3 x NICs (fxp, LAN/WAN/DMZ). - Firewall (ipf, but thinking of moving to ipfw), ipnat - about 4 jails (secure FTP, email gateway with antispam, and AV). - Unmanaged switches used throughout. - No mysql / DBs. - email load is low (20 LAN users, but *heavy* users). The idea is to add another server and be able to gracefully take over all the functionality with no or very minimum downtime. For this setup, I was thinking of CARP, but it isn't supported in 4.x? Setup 2): - 4 x FreeBSD 5.4 Web Servers, 2 NICs (Wan + Private Lan), utilising a full 100 Mbps link overall. (not sure if important, but each server also has HP's iLO standard on its own CAT 5, to the same switch). - Behind Cisco managed switch. - Apache 2.0, no DB in place. - Currently on a simple DNS round-robin setup. - No VRRP running on other switches on this segment of the datacentre, AFAIK - How would CARP with arpbalance work on this situation? (would have to change the DNS to 1 IP,the virtual IP right?) Or is it better to go wackmole/spread? I had some problems a few years ago with wack/spread on 8 servers running 4.x : if a server went down, another would pick up the IP..but never release it when the original came back up - never figured out what the problem was (possibly config?) thanks in advance for your help & comments, Beto