Justin S. Leitgeb <[EMAIL PROTECTED]> wrote: >I just noticed that both mire and deleuze only have one network device > per server online. For some reason I imagined that we would use the > fact that both servers have two network interfaces to build a private > and and public network for our servers, so things like backup and AFS > could go over a connection that doesn't have a public IP and wouldn't > be carrying traffic out to the internet. Currently deleuze only has > one interface listening on 69.90.123.67. > > Was there a reason for setting things up the way that they are? > Should we add a second private network before we go live with the > servers? It seems like this could allow us to use more bandwidth > between servers (especially for backup and fileserving purposes) and > potentially increase security in our configuration.
You generally do not want multiple interfaces on AFS servers. Also, the whole point of AFS will be lost if its internal only. If you must use multiple interfaces, I suggest you ensure that the AFS daemons are only listening on the external IP. Look up NetRestrict and NetInfo files. <<CDC _______________________________________________ HCoop-SysAdmin mailing list [email protected] http://hcoop.net/cgi-bin/mailman/listinfo/hcoop-sysadmin
