Thats fine and all but what if you loose a web server?
We're currently working on what you have here in addition to a
monitoring daemon which will remove servers from a pool if it stops
answering requests.
Scott
On 7/22/05, alan walters [EMAIL PROTECTED] wrote:
Sorry that was an accident. Did not mean to send it
-Original Message-
From: alan walters
Sent: 22 July 2005 15:11
To: 'Bill Marquette'; Scott Ullrich
Cc: support@pfsense.com
Subject: RE: [pfSense Support] round robin on inbound nat
I have done some testing today with inbound NAT and carp
And round robin load balancing to test web servers.
I added the following and it seems to work fine on bsd.
Following presumptions
#
rl1= wan
192.168.2.2 = carp virtual ip
Below was the test.
##
## Added a alias of two ip addresses
webservers = { 192.168.1.2/32 192.168.1.3/32 }
# added to following rdr rule
rdr on rl1 proto tcp from any to 192.168.2.2 port 80 - $webservers port
80 round-robin sticky-address
# added also the following pass rule
pass in quick on $wan proto tcp from any to { 192.168.1.2/32
192.168.1.3/32 } port = 80 flags S/SA keep state queue (qWANdef,
qWANacks) label USER_RULE: NAT http test
-Original Message-
From: Bill Marquette [mailto:[EMAIL PROTECTED]
Sent: 22 July 2005 06:16
To: Scott Ullrich
Cc: alan walters; support@pfsense.com
Subject: Re: [pfSense Support] round robin on inbound nat
On 7/21/05, Scott Ullrich [EMAIL PROTECTED] wrote:
Use carp with the arp load balancing feature. Technically it should
sync across there but there is a outstanding bug with XMLRPC that
we're looking at.
Scott
Wrong feature :) CARPs arp load balancing will only load balance
inbound to the firewall (if setup correctly) from a directly connected
network. What alan wants (if I understand correctly) is the ability
to put two (or more) servers on a port forward rule. That's part of
the load balancing code I'm working on - not ready yet :) Try again
after Aug 7th.
--Bill
On 7/21/05, alan walters [EMAIL PROTECTED] wrote:
I would like to try and test an inbound round robin to our test web
servers.
Would it be possible to put a shell command In to do this.
If so would this sync across a carp array.
Look forward to your replies
--
No virus found in this outgoing message.
Checked by AVG Anti-Virus.
Version: 7.0.323 / Virus Database: 267.9.2/53 - Release Date:
20/07/2005
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]