Home > Software > Linux



Failover Firewalls with OpenBSD and CARP

Sort Desciption:

OpenBSD Packet Filter (PF) born out of IPFilter. license change ..... PF User's Guide http://www.openbsd.org/faq/pf/index.html ...



Content Inside:

Failover Firewalls with OpenBSD and CARPPage 1Failover Firewalls with OpenBSD and CARPJason DixonDixonGroup ConsultingSeptember 17 2005NYCBSDCON 2005Page 2IntroductionFirewalls are a mandatory network componentPage 3IntroductionFirewalls are a mandatory network componentShould be both a guardian and a guidePage 4IntroductionFirewalls are a mandatory network componentShould be both a guardian and a guideOften a single point of failurePage 5IntroductionFirewalls are a mandatory network componentShould be both a guardian and a guideOften a single point of failureFailover Firewalls are as vital as HAApplicationclustersPage 6IntroductionFirewalls are a mandatory network componentShould be both a guardian and a guideOften a single point of failureFailover Firewalls are as vital as HAApplicationclustersChicks dig redundancyPage 7History of OpenBSDA leading secure UNIXlike operating systemEmphasize code robustness and securityOpen licensing is crucialOpenBSD Packet Filter (PF) born out of IPFilterlicense changePage 8PFSYNC ProtocolOpenBSD team acknowledged need for failoverPage 9PFSYNC ProtocolOpenBSD team acknowledged need for failoverPFSYNC (IP Protocol 240)Page 10PFSYNC ProtocolOpenBSD team acknowledged need for failoverPFSYNC (IP Protocol 240)Pfsyncd sends state updates via multicastPage 11PFSYNC ProtocolOpenBSD team acknowledged need for failoverPFSYNC (IP Protocol 240)Pfsyncd sends state updates via multicastOther firewalls will update their own state tablesPage 12PFSYNC ProtocolOpenBSD team acknowledged need for failoverPFSYNC (IP Protocol 240)Pfsyncd sends state updates via multicastOther firewalls will update their own state tablesSynchronized state == graceful failoverPage 13Before CARPOpenBSD lacked failover mechanismVirtual Router Redundancy Protocol (VRRP)assigns virtual gateway between physical routersOperates at OSI Layers 2 and 3Master/Backup relationshipVRRP encumbered by Cisco patentPage 14CARP ProtocolCommon Address Redundancy Protocol (IP Protocol112)Pag ...

Source: www.nycbsdcon.org


add to Google Reader add to Google Bookmark add to bloglines add to newsgator add to FURL add to digg add to webnews add to Netscape add to Yahoo MyWeb add to spurl.net add to diigo Bookmark newsvine Bookmark del.icio.us Bookmark @ SIMPIFY Bookmark MISTER WONG Bookmark Linkarena Bookmark icio.de Bookmark oneview Bookmark folkd.com Bookmark yigg.de Bookmark reddit Bookmark StumbleUpon Bookmark Slashdot Bookmark blinklist Bookmark technorati add to blogmarks add to blinkbits add to ma.gnolia add to smarking.com add to netvouz add to co.mments add to Connotea add to de.lirio.us
Search Terms: ,

 

Related Files

TruePort Linux User Guide

Filed under: Software and Linux
TruePort Linux User Guide, Version 6.0, Part #5500164-10 1 TruePort Linux User Guide This document ... SSL/TLS Trouble Shooting ...

066 - Advanced Unix/Linux Admin & Microsoft Windows Integration

Filed under: Software and Linux
... com.au www.mit.com.au Overview This course has a strong practical slant covering the use of Linux ... and test login i) Security - Iptables, firewalling j) Putty -secure remote admin Day 5 Trouble shooting a ...

Using under OpenBSD

Filed under: Software and Linux
participates in the de] OpenBSD Translation Project. . runs the OpenBSD mirror at the University of Erlangen. Germany (. anoncvs2.de.openbsd.org ...

eurobsdcon 05 For Your Information: OpenBSD @ eurobsdcon 05 ...

Filed under: Software and Linux
Implementing and deploying OpenBSD based wireless networks using hostapd ... cesspoints and a centralized OpenBSD network booting and management server. ...

Using OpenBSD and Snort to build ready to roll Network Intrusion ...

Filed under: Software and Linux
Overview of OpenBSD and Snort. Deployment of Distributed Network Intrusion ... $OpenBSD: Makefilev1.201 2004/02/29 18:02:14 deraadt Exp $ ...