Firewall design help
-
I have three cable lines coming into my network as follows:
-----CABLE1-----FW-----SVR1----LAN | -----CABLE2-----FW-----SVR2----LAN | ------DSL-------FW-----SVR3----LAN | -----CABLE3-----FW-------------LAN
CABLE3 is used for general internet access for the LAN. Each server needs to be accessed from the web. Each CABLE connection has a (semi) static public ip addresses. The DSL line has a public ip address.
The network is in need of a re-organisation because each internet server (SVR1-3) has it's own dedicated connection and thus is a single point of failure.
How could I setup this network using pfSense to load balance with redundancy? As CARP requires multiple static ip addresses, I guess I am limited to a cold standby? Does the diagram below make sense?
-----CABLE1------+ | -----CABLE2------+----FW-------- | | LAN ------DSL--------+ | | +--------+---SVR1 -----CABLE3------+ DMZ | +---SVR2 | +---SVR3
Many thanks,
Chris