carp+pfsync+freevrrpd+jail
Nikos Vassiliadis
nvass at teledomenet.gr
Fri Jul 7 07:17:19 UTC 2006
On Thursday 06 July 2006 22:46, Anton Nikiforov wrote:
> Dear all.
[snip]
>
> That means that in case some service (provided by jail managed by
> freevrrpd) will be accessed from outside - i cannot be sure what host
> will answer the request.
>
You have vrrp on jails and carp on the host system?
That's probably not a good idea, they both use the
same ether-type. Who is gonna get the incoming packet?
carp or freevrrpd? both? I guess both.
Who is gonna reply? Do you know if a vrrp packet confuses
carp or conversely?
nik:0:~$ grep carp /etc/protocols
carp 112 CARP vrrp # Common Address Redundancy Protocol
More information about the freebsd-stable
mailing list