Carp and outbound loal balancing
-
Not sure where to post this but seeing as I have a Carp setup here goes.
I have two VMs on Vmware as pfSense 2.0.2 running Carp for failover. Both VMs have 100Mbps uplinks to the Data Centre but only the master uplink passes traffic. In general it is a beautiful arrangement with no issues.
What I want to achieve is that a handful of other VMs behind the firewalls are very heavy traffic hogs and I would like to re-route them through the backup firewall and out on the second, unused uplink. Also the same would apply for inbound traffic to these VMs, it should come in over the second uplink.
Can this be achieved with pfSense and how?
Cheers.
-
Has anyone any input on this? I could really do with some help.
Thanks
-
Assuming you're NATing and not routing public IPs, you could change the default gateway on some hosts to point to the secondary's LAN/internal IP, NAT them out to the WAN IP (not any CARP IPs) of the secondary, and accomplish that. The hosts would no longer have firewall redundancy though, and if they need access to anything coming in from the primary firewall, that wouldn't work.
-
Thanks Chris but we are using a fully routed setup. Changing default gateway breaks connectivity. Is what I'm trying to achieve possible in a routed configuration?