Hello,
I am currently evaluating high availability firewalls with carp
(7.2-RELEASE, PF) and have run into a problem that I would hope someone here
can explain for me.
According to OpenBSD's documentation on CARP, they allow an ifconfig carp
directive called 'carpdev', which allows you to manual
> There is a LOR between CARP and if_bridge, I have a very brute force
> workaround which is not suitable to commit against -HEAD :(
I have experienced a kernel panic when playing around with transparent bridging
+ pf + carp. Not having carpdev is unfortunate -- it limits my options with my
cur
> -Original Message-
> From: Tom Judge
> Sent: Wednesday, December 16, 2009 1:20 PM
> To: Kevin
> Cc: freebsd-pf@freebsd.org
> Subject: Re: PF Transparent Bridge Firewall + CARP
>
>[router]
> |
> [--switch 1--]
> ||
> [FW1]--{pfsync}--[FW2]
> |
On Tue, Dec 29, 2009 at 11:03 PM, kevin wrote:
> Hello,
>
>
> I am currently evaluating high availability firewalls with carp
> (7.2-RELEASE, PF) and have run into a problem that I would hope someone here
> can explain for me.
>
> According to OpenBSD's documentation on CARP, they allow an ifconfi
On Tue, Dec 29, 2009 at 11:19 PM, kevin wrote:
>> There is a LOR between CARP and if_bridge, I have a very brute force
>> workaround which is not suitable to commit against -HEAD :(
>
>
> I have experienced a kernel panic when playing around with transparent
> bridging + pf + carp. Not having car
