On Thu, May 28, 2009 at 5:42 PM, Scott Ullrich wrote:
> On Thu, May 28, 2009 at 4:40 PM, Alexandre Biancalana
> wrote:
> [snip]
>> FW1:/usr/ports/ftp/pftpx # pftpx -D7 -d -c 8023 -f 192.168.0.80 -p
>> 192.168.0.253
>> using 192.168.0.253 to connect to servers
>&
On Thu, May 28, 2009 at 5:23 PM, Scott Ullrich wrote:
> On Thu, May 28, 2009 at 4:17 PM, Alexandre Biancalana
> wrote:
>> The patch does not apply clearly, I merge they by hand (the final diff
>> is attached) and compiled Ok. I will give a try and let you know.
>>
>
On Thu, May 28, 2009 at 3:37 PM, Scott Ullrich wrote:
> On Thu, May 28, 2009 at 2:25 PM, Alexandre Biancalana
> wrote:
>> Thank you for your reply.
>>
>> Against what versions o pftpx this patch can be applied ?
>> I'm running 7.2-STABLE on amd64 and the
On Wed, May 27, 2009 at 7:12 PM, Scott Ullrich wrote:
> On Wed, May 27, 2009 at 5:42 PM, Alexandre Biancalana
> wrote:
>> Hi list,
>>
>> I have two firewall with 7.2-STABLE, PF and Carp for failover.
>>
>> The machine have one physical interface dedicated to t
Hi list,
I have two firewall with 7.2-STABLE, PF and Carp for failover.
The machine have one physical interface dedicated to two internet
links (from different providers) and using two vlans on top of this
physical interface. Each vlan have one real ip address and a carp
interface with multiple r
On 8/15/08, Jeremy Chadwick <[EMAIL PROTECTED]> wrote:
> On Fri, Aug 15, 2008 at 01:26:31PM -0300, Alexandre Biancalana wrote:
> > Looking the logs I made some math on each state
> >
> > 9:9 6174 times
> > 4:4 3283 times
> > 4:9 2611
On 8/15/08, Max Laier <[EMAIL PROTECTED]> wrote:
> On Friday 15 August 2008 16:08:38 Alexandre Biancalana wrote:
> > Hi list,
> >
> > I'm experiencing some problems with blocked connections because of
> > bad states but I need some more information abo
Hi list,
I'm experiencing some problems with blocked connections because of
bad states but I need some more information about why this is
happening, if this is timeout between tcp handshake, or state creation
or application trying to talk on closed connection.
I have two FreeBSD 7-STABLE with
Hi list,
I'm experiencing some problems with blocked connections because of
bad states but I need some more information about why this is
happening, if this is timeout between tcp handshake, or state creation
or application trying to talk on closed connection.
I have two FreeBSD 7-STABLE with
___
freebsd-pf@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-pf
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
On 4/11/08, Alexander Vyrlanovich <[EMAIL PROTECTED]> wrote:
> I mean ifconfig carp0 carpdev iface
> to attach carp pseudo-device to iface.
>
> The goals is to have physical iface and attached carp device
> configured in different IP subnets like OpenBSD can do.
> (for example if ISP assign /30
On 1/13/08, Alexandre Biancalana <[EMAIL PROTECTED]> wrote:
> On 1/11/08, Scott Ullrich <[EMAIL PROTECTED]> wrote:
> > Thank you. Do you see the states on the backup machine when it is in the
> > backup status mode?
> >
> > pfctl -ss
> >
> > Yo
On 1/11/08, Scott Ullrich <[EMAIL PROTECTED]> wrote:
> Thank you. Do you see the states on the backup machine when it is in the
> backup status mode?
>
> pfctl -ss
>
> You should see a similar output on the backup machine as the primary.
Yes, the output is the same...
>
>
> BTW: I did not know
On 1/11/08, Scott Ullrich <[EMAIL PROTECTED]> wrote:
>
>
> On 1/11/08, Alexandre Biancalana <[EMAIL PROTECTED]> wrote:
> > Yes, I have one interface on each machine dedicated to pfsync.
>
> Can you show us the output of ifconfig pfsync0 on each host?
FW1:/usr/ho
On 1/11/08, Kian Mohageri <[EMAIL PROTECTED]> wrote:
> On Jan 10, 2008 8:18 PM, Alexandre Biancalana <[EMAIL PROTECTED]> wrote:
> > On 1/11/08, Max Laier <[EMAIL PROTECTED]> wrote:
> > >
> > > That's good to hear, keep us up to date!
>
On 1/11/08, Max Laier <[EMAIL PROTECTED]> wrote:
>
> That's good to hear, keep us up to date!
The neverending history finish here !! haahahah
Everything work as expected, carp with failover is awesome !! The only
thing that i noted is that the active conections is being broken
during failover (ma
On 12/9/07, Max Laier <[EMAIL PROTECTED]> wrote:
>
> Please report in case of failure *and* success! Thanks.
Hi Max !
Yesterday put one firewall running pf with this patch and everything
worked perfect ! (until now). I just tested the running config with
carp (real network interface without ip a
On Oct 27, 2007 7:11 PM, Max Laier <[EMAIL PROTECTED]> wrote:
> ... the neverending story continues :-\
>
> I am making progress ... really, really slowly as I'm not at the top of my
> health (inflammation in my front teeth) and 7.0 got in the way, too.
>
> Anyways, here is something for *BETA* tes
On 9/19/07, Max Laier <[EMAIL PROTECTED]> wrote:
>
> So here you go ... this is the ***ALPHA*** version of carpdev support.
> Note that there are *a lot* of raw edges, untested areas and missing
> features still, but "it's working"[tm].
>
Hi Max !
Any Beta version is coming ?
Regards,
Alexandre
On 8/22/07, Max Laier <[EMAIL PROTECTED]> wrote:
>
> On Wednesday 22 August 2007, Alexandre Biancalana wrote:
> > Someone have news about ifconfig carpdev option implementation on
> > FreeBSD ?
>
> I'm preoccupied with academia at the moment. I will do it
Hi guys !
Someone have news about ifconfig carpdev option implementation on FreeBSD
?
I'm glad to test any patches!
Kind Regards,
Alexandre Biancalana
___
freebsd-pf@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-
On 7/20/07, Max Laier <[EMAIL PROTECTED]> wrote:
I am working on a patch to bring over carpdev functionality sponsored by
pil.sk This will, however, take a bit longer than I initially though it
would.
Any news about it ?
___
freebsd-pf@freebsd.org
On 7/20/07, Max Laier <[EMAIL PROTECTED]> wrote:
I am working on a patch to bring over carpdev functionality sponsored by
pil.sk This will, however, take a bit longer than I initially though it
would.
Great !!
___
freebsd-pf@freebsd.org mailing lis
On 7/20/07, David DeSimone <[EMAIL PROTECTED]> wrote:
-BEGIN PGP SIGNED MESSAGE-
That is OpenBSD's documentation you are referring to, but this is
FreeBSD we are talking about. The implementation is not the same.
In order for CARP to be effective, it must send out hello packets on a
pa
On 7/19/07, Marko Lerota <[EMAIL PROTECTED]> wrote:
And?, this is the most usual config in almost any network :)
You can easily implement CARP on this.
Right ! I think it too... let's the me show one example to clarify my doubt.
External IP: 192.168.1.2 netmask 255.255.255.252
Default Rout
Hi list,
I'm using 6-STABLE and need to do failover between 2 firewall machines,
but my Internet connection have just one valid ip address.
Carp documentation describes that carp interface is associated with
physical interfaces via ip address configuration. How can I associate carp
interface wi
26 matches
Mail list logo
