Just remember if your going with a /29 that either you are assigning the single shared carp to the machine(s) behind with port forwards for each service unless the /29 is considered your "transport" network and you have another larger block assigned as your routed/wan/public block behind it.
In any case if you do not have more IP's than the /29, I would suggest a /28 so you have room for growth and do not require changing out your netblock as soon as you need to add another server behind the firewall on the same ports.... Trevor On Fri, Apr 26, 2013 at 5:52 AM, Jim Pingle <[email protected]> wrote: > On 4/26/2013 8:42 AM, Eugen Leitl wrote: > > > > I'm moving colo (yay, no more 2 h drives) and > > have to renumber. Jiggle my memory, is a /29 > > enough for a carp/pfsync failover cluster? > > Yeah a /29 is large enough. You just need three IPs (pri, sec, carp) > plus the gateway makes 4, so a /29 is the smallest usable subnet for > carp in its current implementaton. > > Jim > > > _______________________________________________ > List mailing list > [email protected] > http://lists.pfsense.org/mailman/listinfo/list >
_______________________________________________ List mailing list [email protected] http://lists.pfsense.org/mailman/listinfo/list
