At risk of being beaten senseless by some purists, you should be able
to rig inbound service fail-over by using Dynamic DNS.
Any half-decent firewall should allow you to have 2 WAN interfaces.
If you then configure your NAT cleverly, you can put your outbound
generic surfing traffic out one interface and leave the other for
Inbound services/VPN traffic/etc...
AFAIK smoothwall does the above, but it's a while since I looked at
Alternatively you could use 2 gateways with 2 OSPF yokies (Tired,
words not work proper) internally, done properly you could have a
very cool fully resilient solution.
Or else just use rainwall which will allow you to have 2 boxes with
shared Virtual IPs and true load-balancing... I've used this
commercially with Symantec SGS boxes (yes they are linux!) and it
works a treat, but I haven't tried it with any freebies... Their
generic version of rainconnect can be used with IPTables/Chains...
Hope there's something useful in my ramblings...
On 5 Sep 2005, at 23:48, Ciaran Johnston wrote:
> John Allen wrote:
>>>> Interface bonding.
>>>>> I may be wrong (I often am) but interface bonding is getting two
> interfaces acting as one, not what is wanted at all.
>> What is wanted is something like this:
>> Which, of course, I haven't tried.
> Irish Linux Users' Group
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!