Re: firewall cluster

From: "Ivan ." <ivanhec@xxxxxxxxx>
Date: Wed, 28 Mar 2007 09:04:50 +1000

Hi,

If you want a HA active/passive setup they must be the same firewall.

So either a Linux iptables firewall using linux HA
http://www.linux-ha.org/

or a OpenBSD/FreeBSD firewall
google it

cheers
Ivan

On 3/27/07, sandra <sandra@xxxxxxxxxxx> wrote:

Hello,

We want to set up a cluster of two firewalls with heartbeat. It will be an active-passive
cluster, so if main firewall fails, secondary firewall would become active.
We think that, although they are a cluster, they should have different Operating Systems
(for example linux and BSD), so if a vulnerability has impact in our main firewall and
drops it, the second firewall will start to serve without the same vulnerability affecting it.
Do you think is a good idea or is better to have two identical firewalls for compatibility
issues?
Which combination of Operating Systems do you recommend?
Thanks,

Sandra

Follow-Ups:
- Re: firewall cluster
  - From: r.melchior@xxxxxxxxxx

References:
- firewall cluster
  - From: sandra

Prev by Date: Re: firewall cluster
Next by Date: RE: firewall cluster
Previous by thread: Re: firewall cluster
Next by thread: Re: firewall cluster
Index(es):
- Date
- Thread

Relevant Pages

Re: firewall cluster
... I was thinking about installing one linux and one OpenBSD configured with HA in active-passive mode. ... Cluster with different OS: ... More complex in order to install, ... If a bug can drop one firewall, ...
(Security-Basics)
Re: Linux or BSD alternative to Windows Home Server
... My questions were about Gentoo vs. Linux for a sever, ... I will probably eventually have a dedicated firewall ... if you were to have a file server which is accessible ... I'm aware that I could probably create scripts to regularly backup ...
(comp.os.linux.misc)
Re: OT - Desktop Linux
... I've got both windows and linux boxes. ... But are there any desktop operating systems out there which enjoy a dis- ... software firewall, have a good and up to date ...
(alt.sports.basketball.nba.la-lakers)
Re: Which Linux OS best for beginner to setup as Web / Mail server / Internet sharer and firewall?
... >>I don't want to start a flame war, but in my experience OpenBSD is best ... >>boxes if you must run linux for applications. ... > linux inside the firewall? ... web server? ...
(comp.os.linux.networking)
Re: [fw-wiz] Recommendation needed for a firewall appliance
... >>I was unsuccessful in getting an IPSec VPN going with a Win2K ... >There are several firewall specific linux distros, Astaro, Coyote ... >There are some small firewall units, and there are small Managed Security ... >> for Windows, OSX and Linux. ...
(Firewall-Wizards)