I didn't think that it was supposed to be possible to access a VIP from behind the firewall which is serving that VIP? Is it possible that since I'm using CARP on all my VIPs that I've found an exception?
Basically: I'm able to hit a public CARP ip from my LAN segment (private non-routable ips) which NAT to a different public CARP ip. My webserver logs show that I'm hitting the public ip from my machines private ip. Doesn't that qualify as spoofing? -Matt
