similar to: HA firewall with tinc

Displaying 20 results from an estimated 6000 matches similar to: "HA firewall with tinc"

2016 Jan 27
0
HA firewall with tinc
Hi Saverio, I found conflict: 172.16.1.10 00:50:56:1b:ba:5e VMware, Inc. 172.16.1.10 00:50:56:2b:12:e6 VMware, Inc. (DUP: 2) 172.16.1.10 00:50:56:2b:12:e6 VMware, Inc. (DUP: 3) 172.16.1.10 00:50:56:2b:12:e6 VMware, Inc. (DUP: 4) 172.16.1.10 00:50:56:2b:12:e6 VMware, Inc. (DUP: 5) So my assumptions were wrong ! :D Probably Virtual
2016 Jan 27
0
HA firewall with tinc
This is what I want to avoid :D I want an active Tinc virtual interface active with ip identical of the other firewall, without ip conflict on the same network. Do you know if Tun type virtual interface on one host can have same ip address of another host in the same network without ip conflict ? ie if a tun virtual interface can work active without transmitting on real network ? or if such a
2016 Jan 27
0
HA firewall with tinc
This is a vpn for Disater Recovery sites, so it is not necessary to have a seamless failover, strictly speaking. Encryption instead is mandatory. Testing we found that on Keepalived failover remote Tinc take few seconds to reset the connection and correctly re-connect to the new active firewall (probably new firewall resetting the connection + PingTimeout + some seconds to reconnect). This is
2016 Jan 27
0
HA firewall with tinc
I think it should work at least for TUN virtual interface as TUn works at IP level. This is a sample configuration. firewall1 lan = 172.16.1.11/19 (ALWAYS ACTIVE) - "Physical Network Interface" - system config as ifcfg-... 172.16.1.10/19 (VIP Keepalived Make active) - Active/Passive configuration with firewall2 firewall1 vpndr1
2016 Jan 22
1
tinc with ha firewall
Hi, I have HA firewalls configuration (keepalived) on one site. Each firewall has its own IP and a Virtual IP (VIP) that keepalived activate on one of the firewall (active/passive HA configuration). I think I can set all two firewalls with same configuration, generating key pairs on one firewall and copying that to the second, so the remote host can see always one of the other firewall as the
2016 Jan 22
1
Error starting tinc
No parameters using DNS. - tinc.conf content Name = sito1 AddressFamily = ipv4 BindToAddress = <IPPUB>:665 BindToInterface = int Device=/dev/net/tun Interface = vpndrif Mode = router PingInterval = 60 PingTimeout = 5 ProcessPriority = normal - host/sito1 content Address = <IPPUB>:665 Subnet = <IPLOCAL>/<NETMASK> Port = 655 -----BEGIN RSA PUBLIC KEY----- ... -----END
2019 Apr 11
8
High availability of Dovecot
Hi, list, I'm going to deploy postfix + dovecot + CephFS( as Mail Storage). Basically I want to use two servers for them, which is kind of HA. My idea is that using keepalived or Pacemaker to host a VIP, which could fail over the other server once one is down. And I'll use Haproxy or Nginx to schedule connections to one of those server based on source IP( Session stickiness),
2016 Jan 22
1
Error starting tinc
Executing: ip tuntap add vpndrif mode tun return Keepalived errors show when tincd start: Jan 22 23:41:19 Keepalived_vrrp[1999]: Netlink: filter function error Jan 22 23:41:19 Keepalived_healthcheckers[1998]: Netlink: filter function error Jan 22 23:41:19 systemd-sysctl[23246]: Overwriting earlier assignment of kernel/shmmax in file '/etc/sysctl.d/99-sysctl.conf'. Jan 22 23:41:19
2020 Apr 08
2
alternatives for imapproxy
Hi System debian 8.11 and dovecot-2.2.36.4 My webmail is roundcube with imapproxy. I have one problem. My dovecot servers is are in a cluster with keepalived like: dovecot1----VIP-IP--------dovecot2 All works fine I have a problem with imapproxy when a server dovecot1 had a problem (kernel panic sic!) Keepalived works perfecty and moved VIP to dovecot2 - all works fine for normal users but
2010 Jun 17
1
Asterisk no audio on calls problem.
Hi there, I am trying to setup a configuration that requires me to use SIP and asterisk behind a firewall and over a VPN to a remote office and with some local Phones also. I can't use IAX to my provider because they don't offer it and my handsets ( snom 300 ) also don't support IAX so it's all SIP. The configuration is a follows Asterisk PBX 10.202.17.217/24 ------>|
2014 Sep 17
2
Active/Passive Samba Cluster for Shared NFS Backend
Hello, I am working on setting up an Active/Passive Samba cluster on Ubuntu 14.04 using Samba 4.1.6. Samba will be sharing an NFS mount so that it can be accessible to CIFS clients. Thus, the server setup is as follows: -- cifs0 -- / \ / \ NFS_Server VIP --- CIFS clients \ / \ /
2013 Dec 17
1
Project pre planning
Hello GlusterFS users, can anybody give me please his opinion about the following facts and questions: 4 storage server with 16 SATA bays, connected by GigE: Q1: Volume will be set up as distributed-replicated. Maildir, FTP Dir, htdocs, file store directory => as sub dir's in one big GlusterVolume or each dir in it's own GlusterVolume? Q2: Set up the bricks as a collection of
2015 Sep 29
3
Keepalived vrrp problem
Hey guys, I'm trying to install keepalived 1.2.19 on a centos 6.5 machine. I did an install from source. And when I start keepalived this is what I'm seeing in the logs. It's reporting that the VRRP_Instance(VI_1) Now in FAULT state. Here's more of that log entry: Sep 29 12:06:58 USECLSNDMNRDBA Keepalived_vrrp[44943]: VRRP Instance = VI_1 Sep 29 12:06:58 USECLSNDMNRDBA
2015 Sep 29
1
Keepalived vrrp problem
Em 29-09-2015 15:03, Gordon Messmer escreveu: > On 09/29/2015 09:14 AM, Tim Dunphy wrote: >> And if I do an ifconfig command I see no evidence of an eth1 existing. > > "ifconfig -a" will show you all of your interfaces. Maybe there is a confusion here. Sounds like Tim thought keepalived would create that eth1, like a tunnel interface, but it won't. You have to
2016 Jan 22
1
Error starting tinc
I tested a little more... tincd does not create virtual interface device correctly on CentOS 7, I don't know where tincd stop, probably on " System call `getaddrinfo' failed: Name or service not known" I sent you before. Keepalived return that error I shown on every ip command but this is not a problem now, I'll see this as soon as possible. If I execute these commands tun
2016 Nov 04
2
OpenWrt tinc package, looking for new maintainer
Saverio, it looks I'm using tinc on OpenWRT packaged by you) Thank you for it Is something there in that task, what is harder than https://wiki.openwrt.org/doc/devel/packages ? Anyway, I want to try On Thu, Nov 3, 2016 at 5:57 PM, Guus Sliepen <guus at tinc-vpn.org> wrote: > On Thu, Nov 03, 2016 at 03:43:42PM +0100, Saverio Proto wrote: > > > I am not using OpenWrt a
2016 Nov 12
1
OpenWrt tinc package, looking for new maintainer
Hello Maxim, did you send the pull request ? Please send an email to the list when you do thank you Saverio 2016-11-05 10:09 GMT+01:00 Saverio Proto <zioproto at gmail.com>: > Hello Maxim, > thanks for stepping in ! > > so, I am not even sure how it works for commit rights, because the > people I was in touch with now forked the project to LEDE. > > Also, I always
2012 Apr 12
1
icecast proxy
Hi everyone I am the new user of icecast2 My problem is: On my servers, i already installed icecast2 to streaming mp3 and aac file. Now i want to make a load balancer with these icecast2. When user request a content to a balancer, this balancer will choose the icecast2 server which have less connections for scaling. What i should do now? I heard that wowza can do it. But i want to find some
2019 Jan 07
1
doveadm + HA
Hi I have two server directors in ring and 5 dovecot servers (2.2.36) IP for IMAP and POP3 is a VIP (keepalived) What is the best solutions to get realy HA for 5 dovecot servers ? Maby corosync+pacemeker ? But this solution is too problematic and hardcore Why I need HA ? Doveadmin is too lazy and doveadm director does not know that one machine broke down and still sends traffic
2011 Nov 15
3
OpenWRT package for tinc upgraded
For tinc users on OpenWRT: https://dev.openwrt.org/changeset/29137 ciao :) Saverio