On Sun, Feb 1, 2009 at 5:09 PM, Joseph Hardeman <[email protected]> wrote: > Hi Everyone, > > I have a question that I am hoping someone will be able to help me with. > > I am about to migrate to a network that has two circuits to the same > provider with BGP on each circuit so if one circuit goes down we will be > able to keep our traffic flowing. Our pfSense firewall is setup in Bridge > mode connecting on the front interface of the bridge to one of our routers > and the backend interface of the bridge to one of our switches which then > connect to the front side of all of our servers. >
Bridging can be made to work with failover but requires some manual hacking to bring up and down the bridge appropriately, or you could probably make an easy code change to make STP operate properly in coordination with your switches. > What I want to do is use the Multi-WAN and possible Load Balancing > functionalities and have one circuit as primary and the other circuit as > secondary then have CARP running as a hardware failover between two > identical pfSense boxes. My question is can this be done in bridge mode > Multi-WAN and load balancing, no. When bridging, the firewall doesn't touch anything at layer 3, so it can't route or load balance. That's a function of whatever router your hosts are using outside the firewall, their default gateway. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected] Commercial support available - https://portal.pfsense.org
