Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Loadbalance / CARP over WAN (different GEO locations)

    Scheduled Pinned Locked Moved HA/CARP/VIPs
    2 Posts 2 Posters 930 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D Offline
      dbennett
      last edited by

      Greetings,

      I would like to loadbalance / failover my EMAIL SPAM FIREWALLS between two geographical locations.

      Setup / What I have to work with:

      • Sites are redundant (PRIMARY & Secondary)

      • both sites have a pair of pfsense firewalls in CARP configuration (local)

      • Email SPAM firewalls are on the WAN side of the pfsense boxes

      Now, Since both locations already have CARP setup, could I load balance a single VIP between locations over the WAN?  The VIP would be specifically for the EMAIL SPAM Firewalls.

      Thoughts on how best to do this…?  Oh, and worth noting, that the EMAIL firewalls do NOT have to stay on the WAN side if that makes it easier.

      Thanks ahead of time

      Dino

      1 Reply Last reply Reply Quote 0
      • C Offline
        cmb
        last edited by

        Depends on how your routing works. Generally speaking, no, not without source NAT to one side or the other (which is bad for anti-spam appliances), and not in a way that's geographically redundant, where using a single public IP. Multiple MXes with separate IPs is the best if not only option for redundancy. There are options, tends to get complex though. Probably more than you'll find reasonable help with on a forum because of the complexity. Would be a good fit for professional services.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.