* Ed White <[EMAIL PROTECTED]> [040112 05:57]: > I've not used carp yet, but I'm wondering how could I update my pf.conf on > every box if they share IP/ARP. > > Shouldn't OpenSSH complain about modified MAC ?
The way I do it is to have at least 3 IP addresses for each interface. System1 has a non-carp IP on each interface, and System2 also has a non-carp IP on each interface. Then they have at least one shared carp IP for each physical interface. So if you want to update the pf.conf on System2 and System1 is active you connect to the System2 address. OpenSSH complains about different host keys, it doesn't know about MAC addresses. Anyways, there is a common MAC address for the carp IP. Just use the same host keys on both systems, and OpenSSH will never know/care which host you are connecting to. David
