On Thu, 8 Nov 2012 12:45:20 +0100 Ermal Luçi <[email protected]> wrote:
> On Thu, Nov 8, 2012 at 10:47 AM, Oliver Schad < > [email protected]> wrote: > > > On Thu, 8 Nov 2012 09:53:55 +0100 > > Oliver Schad <[email protected]> wrote: > > > > > On Thu, 8 Nov 2012 09:14:50 +0100 > > > Ermal Luçi <[email protected]> wrote: > > > > > > > > Can you describe the scenario on this? > > > > Why you are expecting traffic on the backup to be rolling > > > > normally when the device its for HA? > > > > > > There are many reasons > > > > > > - debugging network (does the second device work? if the first > > > device has a problem, does the second one have the same problem?) > > > - making updates of a package/firmware > > > - fetch some information from somewhere if you extended the > > > pfsense > > > - keep ssh tunnels alive after a switch > > > > Additionally the ping tests from the backup device to the gateways > > are a little bit senseless if they never succeeds cause of this nat > > rule. > > > > > The problem with this is that you will have double monitoring traffic > with that change. > Some might consider it problematic! Yes I know. There are some parts of pfSense especially in additional packets which doesn't work fine. For example the zabbix proxy module as you mentioned (which is a little bit buggy cause it interprets active/passive mode wrong and doesn't offer to choose a port for passive mode - patched that myself). Yes I usually build some scripts around or fix it myself for me. Regards Oli
signature.asc
Description: PGP signature
_______________________________________________ List mailing list [email protected] http://lists.pfsense.org/mailman/listinfo/list
