Date: Wed, 26 Mar 2003 15:57:18 -0500 (EST) From: "Michael Richards" <michael@fastmail.ca> To: freebsd-security@freebsd.org Subject: Multiple Firewalls with ipfilter? Message-ID: <3E82142E.000017.64676@ns.interchange.ca>
next in thread | raw e-mail | index | archive | help
--------------Boundary-00=_IJJD2I4YA1UMYJ0CCJD0
Content-Type: Text/Plain
Content-Transfer-Encoding: 7bit
We're supposed to provide redundant firewall service. I'm wondering
if anyone has ever tried to do this and if it's realistic. Basically
2 firewall machines hooked up so if one fails the other will
transparently step in. I've googled it to death without much luck.
The security issue here lies in that the 2 firewalls can't talk to
each other. So if I'm keeping state on a connection then the second
firewall has to know about that connection otherwise it will close if
that firewall dies.
Any ideas?
-Michael
_________________________________________________________________
http://fastmail.ca/ - Fast Secure Web Email for Canadians
--------------Boundary-00=_IJJD2I4YA1UMYJ0CCJD0--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3E82142E.000017.64676>