Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Loadbalance between 2 clusteret pfsense boxes

    Scheduled Pinned Locked Moved
    HA/CARP/VIPs
    2
    3
    2.1k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • G
      gaxy
      last edited by

      Hi

      I ame not sure if this is posible, i have the following situation:

      firewall1 (.250 wan / 192.168.0.250 lan / 172.16.0.250 dmz ) –
      ISP Router  --Virtual IP (.201) <                                            > switch ----- server pool
      firewall2 (.251 wan / 192.168.0.251 lan / 172.16.0.251 dmz) --

      the two firewalls are clusteret over CARP so firewall1 is the master and firewall2 the backup, this woks perfect.

      but now the server behind the firewalls becomes more and more traffic, now i would like to made a ladbalancing of the firewall's.
      the problem is that one firewall is to less for the sessions who come to the serverpool.
      at the moment i have more than 300'000 sessions in a peek time.

      Greetings GaXy

      1 Reply Last reply Reply Quote 0
      • G
        gaxy
        last edited by

        no one like to loadbalance the firewalls too ?
        only loadbalance the servers behind?

        1 Reply Last reply Reply Quote 0
        • H
          hexa
          last edited by

          CARP supports active/active setup, but pfsense doesn't (at least not out of the box).
          If you want such advanced configuration i would advise you to study CARP and fix pfsense to be in active active (switches are important too in this case). If you do it, post a detailed description on how you did it, so others can follow.

          The easier option would be just to upgrade hardware of your firewalls. If you have such traffic you have to have enough money. You could even buy support from Sullrich i'm sure he would help you set up active/active freebsd install if you paid for it. :-)

          1 Reply Last reply Reply Quote 0
          • First post
            Last post