|
En réponse à Joseph Mack NA3T <jmack@xxxxxxxx> :
> > yes but in the first place, I will not use virtual server
>
> > Then, If that works, I want to add a DMZ
> > To become a thing like that:
> > .----FW backup---.
> > / | \ \
> > INET--- | | +---LAN
> > \ | | /
> > `----FW master---'
> > \ |
> > \|
> > \
> > DMZ
> >
> > On the firewall(s), VIP of the services. Real
> > servers in the DMZ.
>
> so you want a firewall/director with failover using
I first want a firewall with failover. _Then_ if it works,
I would add director on top of it.
> carp/pfsync for the firewall functions and the server state
> sync demon for ipvs services. But didn't you say that pfsync
> isn't available for linux?
I want to use it under linux. So the carp/pfsync solution
is not available..
The question is: the sync daemon is helpful with me
to synchronize firewalls state or not?
> Running a firewall on the
> director with failover is a fairly normal operation now. It
> doesn't use carp/pfsync.
>
but when the masters fails every connection tracked
by the firewall are lost. I want to avoid that.
> Joe
>
Thanks for trying help me, I apologize for my bad
english.
> --
> Joseph Mack NA3T EME(B,D), FM05lw North Carolina
> jmack (at) wm7d (dot) net - azimuthal equidistant map
> generator at http://www.wm7d.net/azproj.shtml
> Homepage http://www.austintek.com/ It's GNU/Linux!
> _______________________________________________
> LinuxVirtualServer.org mailing list -
> lvs-users@xxxxxxxxxxxxxxxxxxxxxx
> Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
> or go to http://www.in-addr.de/mailman/listinfo/lvs-users
>
"Ce Caillou-là" un conte en téléchargement gratuit sur http://www.Manuscrit.com
|
