No. Im Active/Active when it comes to RADIUS for my switches/access
points. I only do IP failover for the portal pages and management
interface. I *could* do an active IP-hash load balancing of the portal
pages and it should work no differently than any other APACHE server. I
just don't have a need for it.
The PF conf is really no different. Im syncing it because when i make a
change on the master (Say adding a switch), it won't be reflected on the
secondary until the config is synced and a "pfcmd configreload hard is run".
Google "mysql circular replication"
Otherwise, I just have a floating IP between the Mysql servers.
Most of the magic to make the portal pages work on the floating IP is in
the iptables.conf to d-nat from the floating IP to the IP the portal
listens on.
The setup would realistically work on any number of nodes but the portal
pages would only ever be run on one node at a time. We don't have a
problem serving 10000 network ports and 2000 802.1x clients with 2 PF
server VMs and 2 SQL VMs.
On Sat, Feb 28, 2015 at 6:39 AM, A A <[email protected]> wrote:
> Thanks. So you are not using CARP. I take it you have two PF nodes in
> Master-Slave setup. Do you think your setup will work in more than 2 nodes?
> Can you share what is your pf.conf setting (mysql server address) for
> MySQL circular replication?
> Also, why are you syncing configs from Master pf to slave every 5 minutes?
>
> ------------------------------
> From: [email protected]
> Date: Wed, 25 Feb 2015 15:53:26 -0500
> To: [email protected]
> Subject: Re: [PacketFence-users] CARP with PacketFence
>
>
> I use pacemaker and ip failover for the management/portal interfaces and
> ospf for routing. Also ip failover for MySQL on separate servers using
> circular replication. Static pf configs in flat files are rsyncd every 5
> minutes from the "master" pf server to the "slave" radius from switches
> and wireless is active active though
>
> Sent from my iPhone
>
> On Feb 25, 2015, at 3:33 PM, A A <[email protected]> wrote:
>
> Hello.
>
> Trying to configure packetfence for high availability. I have read in the
> administration guide that this can be achieved using Linux HA.
> I was wondering if anyone had thoughts / experience around doing the same
> using CARP? If so, could you please share some of your insights and how you
> went about doing it.
>
> Thanks
>
>
> ------------------------------------------------------------------------------
> Dive into the World of Parallel Programming The Go Parallel Website,
> sponsored
> by Intel and developed in partnership with Slashdot Media, is your hub for
> all
> things parallel software development, from weekly thought leadership blogs
> to
> news, videos, case studies, tutorials and more. Take a look and join the
> conversation now. http://goparallel.sourceforge.net/
>
> _______________________________________________
> PacketFence-users mailing list
> [email protected]
> https://lists.sourceforge.net/lists/listinfo/packetfence-users
>
>
> ------------------------------------------------------------------------------
> Dive into the World of Parallel Programming The Go Parallel Website,
> sponsored by Intel and developed in partnership with Slashdot Media, is
> your hub for all things parallel software development, from weekly thought
> leadership blogs to news, videos, case studies, tutorials and more. Take a
> look and join the conversation now. http://goparallel.sourceforge.net/
> _______________________________________________ PacketFence-users mailing
> list [email protected]
> https://lists.sourceforge.net/lists/listinfo/packetfence-users
>
>
> ------------------------------------------------------------------------------
> Dive into the World of Parallel Programming The Go Parallel Website,
> sponsored
> by Intel and developed in partnership with Slashdot Media, is your hub for
> all
> things parallel software development, from weekly thought leadership blogs
> to
> news, videos, case studies, tutorials and more. Take a look and join the
> conversation now. http://goparallel.sourceforge.net/
> _______________________________________________
> PacketFence-users mailing list
> [email protected]
> https://lists.sourceforge.net/lists/listinfo/packetfence-users
>
>
------------------------------------------------------------------------------
Dive into the World of Parallel Programming The Go Parallel Website, sponsored
by Intel and developed in partnership with Slashdot Media, is your hub for all
things parallel software development, from weekly thought leadership blogs to
news, videos, case studies, tutorials and more. Take a look and join the
conversation now. http://goparallel.sourceforge.net/
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
