Okay, I did not realize that, this is really helpful info. Thinking about it for 2 minutes I just realized that a in bridge mode, the WAN does not "really" have an IP address, does it ? so carp has no IP failover to do whatsoever. Please Correct me if I'm wrong. So if the best I can do is having a "spare" box standing by to get fired up if the other goes down ,it's what i'm going to do. But if you can think of any mecanism (similar to linux heartbeat) that can sit here waiting for the other side to fail, then take the appropriate measure (read "configurable" like starting the proper services) to ensure high-availability of such a system, I'll be more that glad to hear about it. Thanks very much
> Date: Fri, 10 Aug 2007 10:44:29 -0500> From: [EMAIL PROTECTED]> To: > [email protected]> Subject: Re: [pfSense Support] performance on a PE860> > > jamona perez wrote:> > Hi,> > I know this topic comes over regularly, but > searching through the > > archives, thread often ends with "I'll post the > results", but...> > So here is my question : I plan on getting a pair of Dell > PE 860 for > > building a high-availability high-performance transparent > firewall. I > > already understood that I should get extra Intel NICs to be > at best. > > I'm planning on using the integrated broadcom NIC's for OPT and > CARP > > interfaces.> > performance requirements are : throughput up to 500 > Mb/s and 15K new > > conn/s at peak times (about 1.5 million "sessions" with > 60 sec timeout > > -this figures comes from my linux cluster, 60 sec is the > highest > > tcp_xxx_timeout of all "vs" proc entries- ).> > Do you think this > would be achievable with a Dual Core Intel Xeon with > > 2 Gb RAM, and would > FSB speed and L2 cache make any significant > > difference ? should I prefer > SAS over SATA (or simply throw away the > > hard disk and stuff a cf > card+adaptor in it) ?> > Also, there was a long thread about pfsense on PE > 860, how did the > > test finally came up ? > > and finally which version > would be best (was planning to get 1.2RC1)> > > > I would be glad to make > stress test for such installations, but I do > > also lacks some traffic > generator that could burst such amounts of > > connections> > > > thanks in > advance for you response> > > >> > > ------------------------------------------------------------------------> > > Besoin d'un e-mail ? Créez gratuitement un compte Windows Live Hotmail > > et > bénéficiez de 2 Go de stockage ! Windows Live Hotmail > > > <http://www.windowslive.fr/hotmail/default.asp>> Something important to keep > in mind: CARP and Bridge Mode do not work > together. You will want to keep > this in mind while you plan this > installation. > > > ---------------------------------------------------------------------> To > unsubscribe, e-mail: [EMAIL PROTECTED]> For additional commands, e-mail: > [EMAIL PROTECTED]> _________________________________________________________________ David Guetta a réuni les sons les plus connus de Messenger dans le Mix Messenger, le son de l’été ! Téléchargez-le gratuitement ! http://specials.divertissements.fr.msn.com/mixmessenger
