Thats fine and all but what if you loose a web server?
We're currently working on what you have here in addition to a
monitoring daemon which will remove servers from a pool if it stops
answering requests.
Scott
On 7/22/05, alan walters <[EMAIL PROTECTED]> wrote:
> Sorry that was an accident. Did not mean to send it????
>
> -----Original Message-----
> From: alan walters
> Sent: 22 July 2005 15:11
> To: 'Bill Marquette'; Scott Ullrich
> Cc: support@pfsense.com
> Subject: RE: [pfSense Support] round robin on inbound nat
>
> I have done some testing today with inbound NAT and carp
> And round robin load balancing to test web servers.
>
> I added the following and it seems to work fine on bsd.
>
>
> Following presumptions
> #########################
> rl1= wan
> 192.168.2.2 = carp virtual ip
>
> Below was the test.
> ##################
>
> ###### Added a alias of two ip addresses
>
> webservers = "{ 192.168.1.2/32 192.168.1.3/32 }"
>
> ##### added to following rdr rule
>
> rdr on rl1 proto tcp from any to 192.168.2.2 port 80 -> $webservers port
> 80 round-robin sticky-address
>
> ##### added also the following pass rule
>
> pass in quick on $wan proto tcp from any to { 192.168.1.2/32
> 192.168.1.3/32 } port = 80 flags S/SA keep state queue (qWANdef,
> qWANacks) label "USER_RULE: NAT http test"
>
>
>
>
> -----Original Message-----
> From: Bill Marquette [mailto:[EMAIL PROTECTED]
> Sent: 22 July 2005 06:16
> To: Scott Ullrich
> Cc: alan walters; support@pfsense.com
> Subject: Re: [pfSense Support] round robin on inbound nat
>
> On 7/21/05, Scott Ullrich <[EMAIL PROTECTED]> wrote:
> > Use carp with the arp load balancing feature. Technically it should
> > sync across there but there is a outstanding bug with XMLRPC that
> > we're looking at.
> >
> > Scott
>
> Wrong feature :) CARPs arp load balancing will only load balance
> inbound to the firewall (if setup correctly) from a directly connected
> network. What alan wants (if I understand correctly) is the ability
> to put two (or more) servers on a port forward rule. That's part of
> the load balancing code I'm working on - not ready yet :) Try again
> after Aug 7th.
>
> --Bill
>
> >
> >
> > On 7/21/05, alan walters <[EMAIL PROTECTED]> wrote:
> > >
> > >
> > >
> > > I would like to try and test an inbound round robin to our test web
> servers.
> > >
> > > Would it be possible to put a shell command In to do this.
> > >
> > >
> > >
> > > If so would this sync across a carp array.
> > >
> > >
> > >
> > > Look forward to your replies
> > >
> > >
> > >
> > >
> > > --
> > > No virus found in this outgoing message.
> > > Checked by AVG Anti-Virus.
> > > Version: 7.0.323 / Virus Database: 267.9.2/53 - Release Date:
> 20/07/2005
> > >
> >
> > ---------------------------------------------------------------------
> > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > For additional commands, e-mail: [EMAIL PROTECTED]
> >
> >
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>
>
>
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
