[prev in list] [next in list] [prev in thread] [next in thread] 

List:       openbsd-pf
Subject:    Re: PF and carp questions
From:       Douglas Santos <dsantos () fearside ! org>
Date:       2004-06-04 17:24:16
Message-ID: 20040604172416.GA7803 () laptop
[Download RAW message or body]

Securityinfos wrote:
> I have this kind of setup :
>
> 1 t1 line with 64 ip available 
> 1 dsl line with only 1 ip available
>
> so on obsd 3.5 box 3 nics available
>
> 1st nic for t1 link
> 2nd nic for dsl link
> 3rd nic for LAN
>
> 
> Here are the questions : 
>
> 1) can i have a pf+carp configuration on this kind of situation or i
> need more ips on DSL link ?
>
> 2) Is it possible to have pf+carp configuration on a bridge firewall ?
>
> 3) Need to have a sort of load balancing on the 2 links based os
> source ip addresses ... packets coming from certain ips go to t1 ips
> and then redirected inside to a webserver inside the lan
> packets coming from certain ips go to DSL ips and then redirected
> inside
> to a webserver inside the lan

It must work on your configutarion.
I think that you cannot use it on a bridge.
Maybe using something like a proxy arp in this case?
Load balancing you can get with route-to option.
[prev in list] [next in list] [prev in thread] [next in thread]