Could be useful…....or not ;-)

HA/CARP/VIPs
Log in to reply
  • J

    As there are some hidden firewall rules I was asking myself if it shouldn't be useful to add special ones when using CARP. I'm thinking of NO NAT ones ;-)
    When using CARP I see no reasons that CARP broadcasts (directed to 224.0.0.18) should be nated.
    I "think" it should be useful to hard code a no nat rule per physical interface where a CARP interface is defined. For example :
    no nat from <iface ip="">to 224.0.0.18

    Am I wrong…..have you an example where natting the VRRP broadcast should be useful ?</iface>

    0

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy