I am trying to setup up a failover firewall using heartbeat. Everything seems to work just fine except for the fact that the state of existing connections is lost when the running firewall is stopped. Is there any way to share the info in /proc/net/ip_conntrack between these 2 systems? If not, does anyone else have any ideas or solutions to this problem? I know that Cisco firewalls have this capability. I would be surprised if netfilter couldn't accomplish this as well. Thank you for your help -- Zack Lawson <zack@xxxxxxxxxx> Systems Administrator Einstein Industries Inc.
