Trying to achieve both firewall redundancy (via carp) and ethernet redundancy (via trunk(4)), would it be possible and (and maybe even recommended) to have firewall-1 connected solely to switch-1 and firewall-2 connected solely to switch-2, forgo the trunk(4), and just use carp to detect if either of the switches has failed, and fail over to the other switch/firewall combo?
Am I making sense? Thanks, Tim
