Displaying 20 results from an estimated 200 matches similar to: "Shorewall and ucarp for firewall redundancy"
2005 Mar 21
0
utexas mirror downtime - FIXED
The Shorewall mirror hosted at the University of Texas at Austin was
knocked offline due to a campus-wide power failure at approximately 0615
CST. The issue is now resolved. Downtime totaled a little over two
hours. Apologies for the inconvenience.
--
Nick F. Silkey 512.475.8284
Sysadmin / BOFH silkey@ece.utexas.edu
Dept. of Electrical and Computer Engineering
The
2009 Mar 14
0
shorewall, ucarp & conntrackd on debian
hi
i''ve not found many hints on shorewall/ucarp/conntrackd topic. i''m
sharing this with the list, so that i''m able to search and find it the
next time. :)
i''ve setup 2 identical systems with shorewall, ucarp and conntrackd in
an active/backup way. ucarp just calls ifup/ifdown, all network configuration
is maintained in /etc/network/interfaces (Debian),
2010 Dec 08
1
NFS with UCARP vs. GlusterFS mount question
Morning Folks,
should I prefer NFS with UCARP or native GlusterFS mounts for serving the
system images to XCP?
Which one performes better over 1G network links?
NFS is probaby easier to setup due to existing tools like rpcinfo and
showmount, both are used inside the storage container code, and there is some
code for NFS, not for GlusterFS, except I write one.
UCARP has the disadvantage that
2004 Oct 21
3
Ucarp and shorewall
Has anyone successfully setup a shorewall Ucarp solution?
2012 Oct 18
1
GlusterFS failover with UCarp
Hi,
we've successfully configured GlusterFS mirroring across two identical
nodes [1].
We're running the file share under a Virtual IP address using UCarp.
We have different clients connected using NFS, CIFS and GlusterFS.
When we simulate a node failure, by unplugging it, it takes about 5
seconds for the CIFS and GlusterFS clients to refresh the connection and
continue operation. The
2004 Oct 20
1
Failover
I''m expermienting with Shorewall for use protecting my servers(about 25
all currently using pub addresses). My pointy-haired-boss is somewhat
sceptical about adding a firewall that would be a single point of
failier for our services. Does anyone have a good set of documentation
that I could use in setting up either an Active/Active or Active/passive
setup with two identical shorewall
2006 May 22
0
Routing and Redundancy Delima
My setup:
LAN A
|
|-- Wireless-r1 --|
|-- Wireless-r2 --|
..................|
.................LAN B
LAN A is my primary (external) LAN. LAN B is my wireless LAN. LAN A does
iBGP and OSPF routing. Each wireless router does the following:
2 Bridged Ethernet + STP connections to LAN A
2 Bridged Ethernet + STP connections to LAN B
2 VLANs on LAN A
5 VLANs on LAN B
UCARP on each wireless
2006 Sep 14
5
Shorewall make my firewall fly!
I''ve just put in production a Linux firewall with 4 ethernet interfaces
and 3 openvpn tun virtual interfaces.
With Shorewall everything work like a charm (only a little hassle with
some details, due to bad configuration, not bugs!)
Great tool!
Tom and other Shorewall developers, you all are great!
Bye (and sorry for my bad english)
--
Paolo Basenghi - Centro elaborazione dati
2012 Oct 24
5
Multiple resource definition error
Hi,
So, I am writing a module to install and configure ucarp. There is only
one module in puppet forge and that is not that good.
In ucarp, same configuration files have to be served on two servers and
to configure the host I am defining a custom resource
ucarp::host::config. So, for using, I''ll have to create this resource
two times on two different servers. So, this resource
2011 Jun 06
2
Gluster 3.2.0 and ucarp not working
Hello everybody.
I have a problem setting up gluster failover funcionality. Based on
manual i setup ucarp which is working well ( tested with ping/ssh etc
)
But when i use virtual address for gluster volume mount and i turn off
one of nodes machine/gluster will freeze until node is back online.
My virtual ip is 3.200 and machine real ip is 3.233 and 3.5. In
gluster log i can see:
[2011-06-06
2005 Feb 05
9
Hot Fallover
Hello List:
Recently our shorewall FW server went dead (PS failure) & brought the entire
system down. Luckily we are testing the FW and other servers, so we did not
loose anything. Now we have decided to setup two Shorewall FW servers with a
primary & another fallover FW server.
I have done some research cruised the Internet and found that a product
''UCARP''
2007 Oct 10
3
failover with conntrackd
Hi.
Is anyone using conntrack-tools to implement gateway failover on a
network with windows clients?
I set it up with ucarp and keepalived, and found that gratuitous ARP
doesn''t always seem to update the cache on Windows machines. It works
the first time, but if a second failover happens, the client continues
to send stuff to the wrong MAC address. Linux machines work fine.
2005 Sep 04
3
High-Availability shorewall
Hi all!
I think I remember there have discussion on this topic on this
mailinglist a while ago.
But the archives don''t find anything.
Did anyone here set up a configuration with shorewall and heartbeat
or vrrpd or ucarp?
What would you prefer? Any experiences with failover times, setup
problems etc? Good documentation on this?
Thanks,
Christian
--
you don''t need eyes to see
2005 Jan 15
0
New mirror at the University of Texas
Thanks to Nick Silkey, the Shorewall site is now fully mirrored at the
University of Texas.
HTTP download:
http://slovak.ece.utexas.edu/mirrors/shorewall/
FTP download:
ftp://slovak.ece.utexas.edu/shorewall/
HTTP mirror: http://utexas.shorewall.net/
Thanks, Nick!
-Tom
--
Tom Eastep \ Nothing is foolproof to a sufficiently talented fool
Shoreline, \ http://shorewall.net
Washington USA
2003 Feb 25
0
COURSE: Prof. Brian D. Ripley on Statistical Data Mining, Zuerich, April 3/4
Insightful AG and Seminar for Statistics of ETH Z?rich present:
Statistical Data Mining by PROF. BRIAN D. RIPLEY
click here for all details: http://www.insightful.com/services/training/datamining_by_Ripley.asp
*Zuerich April 3/4*
Data Mining has become popular in science, engineering and in traditionally data-rich
industries such as banking, insurance and market research. There are emerging
2005 Jan 21
0
equal cost multipath routing and incoming services...
We''re trying to figure out how to have equal cost multipath routing using OSPF (quagga) and have come up with the following...
Has anyone done something similar? -- How do you deal with incoming services (mail/web/etc) in such a scenario as below - And does anyone have any suggestions?
There''s more detail below....
Diagram and overview:
Network A connects to Core1 and Core2
2007 Jul 19
10
gateway failover with linux
Hi.
I''m wondering if there''s a good way to configure a Linux firewall box to
failover to a single backup server, while preserving connection state.
This question has been asked before, but the latest reference I can find
is from 2004, at which time Linux had no equivalent of OpenBSD''s pfsync,
though Harald was said to be working on one.
Did anything come of those
2011 Sep 05
1
Quota calculation
Hi Junaid,
Sorry about the confusion, indeed I gave you the
wrong output. So let's start to the beginning. I disabled quota and I
reactivated it
My configuration :
Volume Name: venus
Type: Distributed-Replicate
Status: Started
Number of Bricks: 2 x 2 = 4
Transport-type: tcp
Bricks:
Brick1: ylal3020:/soft/venus
Brick2: ylal3030:/soft/venus
Brick3: yval1000:/soft/venus
Brick4:
2007 Jun 11
3
groups with spaces in their name
I''m trying to set puppet up to manage users and groups on an OpenBSD
Samba server, but puppet doesn''t want to handle group names with spaces.
I know this horribly ugly, but compatibility with windows clients seems
to demand groups like "Domain Users" and "Domain Computers", and puppet
chokes on them even though the underlying OS handles them at least well
2011 Apr 21
1
ESXi & Gluster setup options
All,
We are in the process of determining a virtualized infrastructure and
wanted to hear from
current users of Gluster and VMWare. What we were looking to setup was
an HA ESXi cluster
(2 heads) with gluster backend (4 bricks to start,
replicated/distributed), all backend connectivity
would be 10Gbe. Mainly the storage would be for VM images but may
include NAS files later.
So our