Lito Kusnadi wrote: > Hi, anyone has successfully implement iptables state transfer for > redundant shorewall? I managed to get keepalived running with > shorewall. But the problem is the state of the connection stays on > one box. I tried to use netfilter conntrackd userspace and ct-sync > (if I'm not mistaken) to no avail. > > platform is centos 5.2 std install. > > netfilter conntrackd screwed up the connection state. ct-sync kernel > patch simply doesn't work. > > Anyone can provide a pointer "how to" would be much appreciated.
I doubt that you will find a "How To" that marries cutting-edge development like ct-sync/conntrackd with comparatively ancient technology like CentOS 5.2. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ OpenSolaris 2009.06 is a cutting edge operating system for enterprises looking to deploy the next generation of Solaris that includes the latest innovations from Sun and the OpenSource community. Download a copy and enjoy capabilities such as Networking, Storage and Virtualization. Go to: http://p.sf.net/sfu/opensolaris-get
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
