[ Home | Liste | F.A.Q. |
Risorse | Cerca... ]
[ Data: precedente | successivo | indice ] [ Argomento: precedente | successivo | indice ]
[ Home | Liste | F.A.Q. |
Risorse | Cerca... ]
Archivio: Marzo 2004 ml@sikurezza.org Soggetto: [daemonnews] Firewall Failover with pfsync and CARP Mittente: Igor Falcomata' Data: 30 Mar 2004 22:33:30 -0000
http://daily.daemonnews.org/view_story.php3?story_id=4477 Firewall Failover with pfsync and CARP 30 March 2004 Submitted By : Daniel Hartmeier OpenBSD developer Ryan McBride explains the new firewall redundancy features in the upcoming OpenBSD 3.5[1] release in his article Firewall Failover with pfsync and CARP[2]. CARP (Common Address Redundancy Protocol) is a free alternative to the patent-encumbered VRRP, responsible for electing masters in a firewall cluster, while pfsync syncronizes packet filter state information among nodes. The combination allows to replace single-point-of-failure firewalls with clusters of two (or more) nodes, which continue to filter ongoing and new connections when nodes fail. Additional features like arpbalance allow to share a single IP address for multiple servers, transparently balancing load among them, and adapting to servers failing. Pre-order[3] for OpenBSD 3.5 has started, CDs will ship May 1st. [1] http://www.openbsd.org/35.html [2] http://www.countersiege.com/doc/pfsync-carp/ [3] http://www.openbsd.org/orders.html -- Igor Falcomata' Security Consultant ________________________________________________________ http://www.sikurezza.org - Italian Security Mailing List
[ Home | Liste | F.A.Q. |
Risorse | Cerca... ]
www.sikurezza.org - Italian Security Mailing List
(c) 1999-2005