I have a Proxmox VE (http://pve.proxmox.com/wiki/Main_Page) cluster setup. In this cluster I have a bunch of KVM machines. I am using Shorewall to firewall the host nodes and the virtual machines. Shorewall is running on each node of the cluster and I wrote a small script to syncronize the /etc/shorewall/ directory on each node of the cluster. I have recently switched from a bridged network to a routed one using proxy ARP for my KVM virtual machines.
My question is will having bogus entries in the proxyarp file cause issues? Since the entire directory is synchronized the files are all same across the cluster, which allows for easy migration of the virtual machines, the proxyarp is the same on each box. I have an entry in the proxyarp file for an IP that is not currently on that cluster node it is however on the other cluster node. Will that mess anything up? In testing everything seems to still work but I want to be sure before I put this change into production. Is there a better way to accomplish what I am trying to do? I am using Shorewall version 4.0.15 Thanks, _ /-\ ndrew Niemantsverdriet ------------------------------------------------------------------------------ Come build with us! The BlackBerry(R) Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9 - 12, 2009. Register now! http://p.sf.net/sfu/devconference _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
