Hello,
I've just purchased 2 shiny new firewall boxes that I plan to have
running with CARP. I've read the man pages and Ryan McBrides
documentation and it all seems fairly straightforward, the hard part for
me seems to be the physical network side of things. I've searched the
archives and google and couldn't find anything specifically dealing with
my scenario (with the possible exception of Stephen Marley - who I think
does something similar to what I want to do).
Here goes with the background information.....
I have a single bridged 1500/256 ADSL connection from my ISP. When I say
bridged I mean bridged-ethernet, ie I do not run PPPOE/PPPOA. I then
have a DSL modem (not router) running in bridged mode which is directly
connected to my 3.7 based firewall's external interface. Like so;
Internet -> ADSL_Modem -> OpenBSD_Firewall
I have a real external static IP address (my so called WAN IP) assigned
to the external interface on the firewall.
As mentioned above, I would like to run CARP on my pair of firewalls and
my questions are;
How do I configure both firewalls with regards to the static WAN IP
address ?
Do I need inbound and outbound CARP ? (I think I do)
Do I configure CARP on those interfaces aswell as the *internal*
interfaces that I want the failover to work on ?
Is this at all possible ?
Thanks in advance for any advice or help.
Brian.
