DaemonForums  

Go Back   DaemonForums > OpenBSD > OpenBSD General

OpenBSD General Other questions regarding OpenBSD which do not fit in any of the categories below.

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 25th June 2009
xinform3n xinform3n is offline
Port Guard
 
Join Date: Jun 2009
Posts: 15
Default CARP interface with DHClient

Hello,

I would like to setup an HA firewall cluster with OpenBSD.
My ISP give IP addresses through DHCP.

In this way, I would use DHClient for the CARP interface on my two firewalls.
Does this solution work ?

Or could you propose to me an other way ?

Thank's for your comments.
Xinform3n from Switzerland.
Reply With Quote
  #2   (View Single Post)  
Old 25th June 2009
ocicat ocicat is offline
Administrator
 
Join Date: Apr 2008
Posts: 3,318
Default

Quote:
Originally Posted by xinform3n View Post
Or could you propose to me an other way ?
I, too, have wrestled with how to create such a configuration.

The solution I resigned to use was to put a NAT-enabled router in front with the CARP'ed cluster with its external (egress) interface set to accept a DHCP address & the internal (ingress) interface set to whatever private RFC 1918 address chosen.
Reply With Quote
  #3   (View Single Post)  
Old 25th June 2009
xinform3n xinform3n is offline
Port Guard
 
Join Date: Jun 2009
Posts: 15
Default

Quote:
Originally Posted by ocicat View Post
The solution I resigned to use was to put a NAT-enabled router in front with the CARP'ed cluster with its external (egress) interface set to accept a DHCP address & the internal (ingress) interface set to whatever private RFC 1918 address chosen.
Hi OCICAT

Okay, this solution will probably work for me too but it doesn't satisfy me.
If CARP with DHClient couldn't work, I will search a workaround directely on OpenBSD (maybe ifstated, etc...). (another idea ?)
In last resort, I will discontinue my Firewall Clustering projet :'(

Thanks
Reply With Quote
  #4   (View Single Post)  
Old 25th June 2009
jggimi's Avatar
jggimi jggimi is offline
More noise than signal
 
Join Date: May 2008
Location: USA
Posts: 7,975
Default

I've not played with CARP together with DHCP, so I can't vouch for this method:

http://bsdstuff.googlepages.com/dhcarp

Even if it is not directly usable, it may spark some ideas for you.
Reply With Quote
  #5   (View Single Post)  
Old 1st July 2009
xinform3n xinform3n is offline
Port Guard
 
Join Date: Jun 2009
Posts: 15
Default

Hi jggimi,

Thanks for the great link. This could be a nice workaround.
I will try this in the coming weeks (depends of my workload) and I will give You a feedback.
Reply With Quote
  #6   (View Single Post)  
Old 22nd July 2009
xinform3n xinform3n is offline
Port Guard
 
Join Date: Jun 2009
Posts: 15
Default

Hi,

I'm a little player... :'(
I've got added a Cisco 2600 router in front on my CARP'ed cluster.
So, I follow the OCICAT way's.

Thanks !
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
carp configuration ohhcarp OpenBSD General 3 16th April 2009 10:50 PM
dhclient at startup bsdnewbie999 OpenBSD General 3 31st March 2009 03:55 AM
dhclient.conf: multiple fixed-address statements xiphias FreeBSD General 14 19th June 2008 06:42 AM
dhclient iwi0 "Could not read iwi-bss' error FreeMan OpenBSD General 2 15th May 2008 08:01 PM


All times are GMT. The time now is 09:32 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick