On Thu, 17 Jun 2004 16:52:06 -0400 "Patrick Ahler" <patrick@xxxxxxxxx> wrote: > over. This is not redundancy and is dirty. Does anyone have any > suggestions on how to do this better? > First of all i never tried what i'm gonna suggest, but you dould document and try it out if you like it :) When i was documenting about Linux Virtual Server i found very interesting information about redundancy of Firewall with Director funcionts managed with an "Active-Active" solution. you can take a look at http://www.linuxvirtualserver.org and http://www.ultramonkey.org/papers/active_active/active_active.shtml In this configuration the 2 firewalls share the same IP and MAC Address. Then , using a daemon called "saru", they divide the load in two parts and handle them in a load balanced - fault tolerant way. It seemed very interesting and i think i'm gonna try it as early as i can. check it out :) Bye
