I'm having trouble getting virtual addresses to behave as I expect; my expectations may be what's off, but I'll let you be the judge.
I have a pair of systems set up as a virtual router - CARP IP on both WAN and LAN, and clients configured with that as their gateway. Try as I may, I cannot seem to get the systems' real IPs to "disappear" and use only the virtual IPs. On the LAN side, if I try to traceroute to the WAN's next-hop address, I get the master's real IP as my next-hop instead of (what I would expect) the LAN virtual. On the WAN side, I see egress traffic coming from the master's real WAN IP instead of the virtual as well. Configuring advanced outbound NAT to the WAN virtual seems to "work" (tcpdump shows appropriate traffic), but clients never get any return traffic. I guss this boils down to two questions: 1) Can I NAT client traffic to a virtual WAN IP? 2) Can I direct all traffic on a given interface to the virtual IP and drop all packets to the real IPs? --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
