hi everyone i have a new task for a hosting provider there is a linux firewall filtering internet for all the servers (someting like 100 servers). last week the firewall broke down, cut the internet access to all the servers and no alarm cause the nagios was behind the firewall. the box had linux iptables and proxy arp.
----[internet]---public IP--[linux box]-----all the servers(public ip's) the ip of the box, is in the same subnet that the servers and all the interfaces on the linux has the same public ip. i was thinking at a bridge firewall with openbsd, and maybe carp to be redundant but carp is not working with bridge maybe pf sync and stp ? thank u for your advice on the situation
