Am 03.04.2011 um 17:30 schrieb Nick Holland: > > HOWEVER, if your users were doing something with the currently active > states, for example downloading a large file via http, the state that > permits the incoming file WOULD be sync'd to the standby system, and > that download would continue.
The manpage of authpf says that authpf will remove state table entries after the ssh session is terminated (paragraph four of DESCRIPTION and paragraph two of CONFIGURATION ISSUES). This seems not to be true in a HA configuration with pfsync. Because authpf doesn't have the chance to remove the entries from the state table, if the master firewall failed. Is this right? Patrick
