Gary Buckmaster wrote:
Chris Bagnall wrote:
Greetings list,
Does anyone know if pfSense includes support for failover between two
LAN interfaces?
For example, one can provide high availability using CARP to create a
virtual router IP failing over between 2 pfSense boxes, but that's
not going to solve the problem of a switch dying. It'd be useful to
be able to connect 2 interfaces from each box to the LAN (one to each
switch), then configure them using spanning tree protocol (or one of
the derivatives).
If it's not currently included, are there plans to do so, and/or what
sort of financial incentive would encourage development on that
front? :-)
Regards,
Chris
Chris,
There's been a call on the site for awhile for some hardware that
support STP. I don't know if that call is still valid or if they got
hardware in. I suspect that you'd want to consider a bounty project
or get in touch with BSDPerimeter and put together a formal quote. I
hope you choose to pursue this, it'd be a nice feature to have.
You don't need spanning tree support on the router to accomplish this.
You just need NIC 'teaming' support in the OS.
Linux supports this in a variety of modes, for example, using a single
MAC address across two ports but only transmitting on one, or using
standards-based link aggregation to allow the bandwidth of both
connections to be used (you could use this with a stacking switch such
as a 3750 to also get resilience).
I would guess that FreeBSD also has support for this somewhere, it would
just be a case of building it into the back-end and web interface.
STP is, in my opinion, a brain-dead way of accomplishing this. STP
should be eliminated from any well-designed modern network wherever
possible!
Thanks,
adam.
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
