求龙飞BSD的ipfw3的ipfwsync的用法
公司使用ipfw,但是很希望有pfsync类似的功能,最近看到ipfwsync来自龙飞BSD的Ipfw3,有人试下吗,求经验分享 英文的,求翻译Ipfwsync
Ipfwsync or 'Ipfw3sync' is the facility in ipfw3 which can synchronize firewall states between machines running ipfw3 firewall for high availability. It can be used together with CARP to make ensure a backup firewall has the same states as the main firewall. When the master machine in the firewall cluster dies, the slave machine will be able to takeover the service and accept current connections without loss. the firewall need to configured into ipfwsync "centre" and ipfwsync "edge". the centre will continuously sync the states to the edges using UDP protocol.
Use below commands to configure an ipfwsync edge. The edge will listen on the UDP port 5000.
ipfw3 sync edge 5000
ipfw3 sync start edge
Below command to configure an ipfwsync centre, and this ipfwsync centre will automatically sync the states to edge 192.168.1.1:5000 and edge 192.168.1.2:5001.
ipfw3 sync centre 192.168.1.1:5000,192.168.1.2:5001
ipfw3 sync start centre
Below command to verify whether the ipfw3 centre can send the test message to all the configured edges.
ipfw3 sync test centre 1 看你发的原文,像ha的那一套。
另外DragonFly明明是蜻蜓嘛,人家也是一个蜻蜓的图标,你为什么非要叫它龙飞呢? ipfw还真需要一个sync的功能,FreeBSD的ipfw开发最近几年非常不活跃。 ;P因为龙飞听起来比较屌,飞龙更屌!
页:
[1]