search for: vpndr1

I have 2 firewall in HA with keepalived. Can I use active the same tinc configuration on 2 firewalls ? using tun Interface with same ip on all 2 nodes is a problem ? tun device advertise itself on the network having an IP/MAC pairs (ARP) or the IP is only used by the system internally for routing so using the same configuration is right ? so one firewall be active, the other is passive. With this

...sample configuration. firewall1 lan = 172.16.1.11/19 (ALWAYS ACTIVE) - "Physical Network Interface" - system config as ifcfg-... 172.16.1.10/19 (VIP Keepalived Make active) - Active/Passive configuration with firewall2 firewall1 vpndr1 = 172.16.1.10/8 (ALWAYS ACTIVE) - "Virtual Network Interface" - tinc config as tinc-up started as service firewall2 lan = 172.16.1.12/19 (ALWAYS ACTIVE) - "Physical Network Interface" - system config as ifcfg-... 172.16.1.10/19...

...firewall1 lan = 172.16.1.11/19 (ALWAYS ACTIVE) - > "Physical Network Interface" ? system config as ifcfg-? > > 172.16.1.10/19 (VIP Keepalived Make active) - > Active/Passive configuration with firewall2 > > firewall1 vpndr1 = 172.16.1.10/8 (ALWAYS ACTIVE) - "Virtual > Network Interface" ? tinc config as tinc-up started as service > > > > > > > > firewall2 lan = 172.16.1.12/19 (ALWAYS ACTIVE) - "Physical > Network Interface" ? system config as ifcfg-?...

...= 172.16.1.11/19 (ALWAYS ACTIVE) - >> "Physical Network Interface" ? system config as ifcfg-? >> >> 172.16.1.10/19 (VIP Keepalived Make active) - >> Active/Passive configuration with firewall2 >> >> firewall1 vpndr1 = 172.16.1.10/8 (ALWAYS ACTIVE) - "Virtual >> Network Interface" ? tinc config as tinc-up started as service >> >> >> >> >> >> >> >> firewall2 lan = 172.16.1.12/19 (ALWAYS ACTIVE) - "Physical >> Network In...

...172.16.1.11/19 (ALWAYS ACTIVE) - >> "Physical Network Interface" ? system config as ifcfg-? >> >> 172.16.1.10/19 (VIP Keepalived Make active) - >> Active/Passive configuration with firewall2 >> >> firewall1 vpndr1 = 172.16.1.10/8 (ALWAYS ACTIVE) - "Virtual >> Network Interface" ? tinc config as tinc-up started as service >> >> >> >> >> >> >> >> firewall2 lan = 172.16.1.12/19 (ALWAYS ACTIVE) - "Physical >>...