Using OpenBSD CARP and pfsync for inexpensive firewall/router redundancy
Published by scotth March 30th, 2004 in SecurityEnterprise network admins are probably familiar with Cisco’s HSRP which allows for router redundancy and VRRP for firewall redundancy. This article describes a way to achieve the same thing using features in the upcoming OpenBSD 3.5 release . Other commercial firewalls certainly have similar capability. However, OpenBSD’s feature set is becoming rather compelling.
Smaller businesses can certainly find value in such an approach, keeping their network available and secure at a fraction of the cost. Evening paying an outside consultant for installation and ongoing support would be cost effective. Deploy something like this and things remain comfortable for your cisco-trained network admins.
All of this of course reminds me that I really need to schedule some time to upgrade my own OpenBSD firewall.
Search
Scott Harney
(GPG key)<>
Resume
An online copy of my resume. This resume is suitable for printing but also contains clickable links providing more detail. Just mouse over the bullet items.
Photo Album
My current pictures via Flickr.
Older family pictures.
Twitter Updates
Wedding
I got married on 9/4/2004. So click for details, already.
Old stuff
Links and writings from older versions of this site
Old stuff
Oldest stuff
No Responses to “Using OpenBSD CARP and pfsync for inexpensive firewall/router redundancy”
Please Wait
Leave a Reply