You could hack something together using heartbeat (for failover), freevrrp (for sharing common IPs), and drbd (to replicate a block device between the two hosts). But (AFAIK) you won't be able to save/failover state between the two. You'll either have to use non-stateful rules, or put up with the possibility of dropping any existing connections during the fail-over.
|