Hello to all! Hope you are all good!
My query is that I am trying to implement automatic failover of 2 FreeBSD firewalls (acting as edge gateway), using CARP, in a cloud based environment and the problem is that the infrastructure does not support multicast traffic, or any other pre-reqs for implementing CARP (such as promiscuous mode, forged transmits, etc.) In fact, upon googling, I found that a couple of well known cloud service providers such as AWS do not provide support for such type of traffic at all. So, my question is that is there any way that we can achieve HA/auto-failover in cloud, using either CARP or something similar to CARP? I heard of UCARP on FreeBSD and tried its implementation, but due to a lack of documentation and support, it was seemingly not a feasible solution (If although you can direct me to a detailed tutorial or a great how-to, it will also be appreciated). Plus, example of any case where FreeBSD firewall are implemented in auto-failover in production (using any method), will also be of great help as that would let me know what are the best practices for implementing CARP in cloud based envs. Do keep in mind that this solution will be implemented in prod environment, thus will need to be stable and well-tested.
Any and all help in this regard will be greatly appreciated!
My query is that I am trying to implement automatic failover of 2 FreeBSD firewalls (acting as edge gateway), using CARP, in a cloud based environment and the problem is that the infrastructure does not support multicast traffic, or any other pre-reqs for implementing CARP (such as promiscuous mode, forged transmits, etc.) In fact, upon googling, I found that a couple of well known cloud service providers such as AWS do not provide support for such type of traffic at all. So, my question is that is there any way that we can achieve HA/auto-failover in cloud, using either CARP or something similar to CARP? I heard of UCARP on FreeBSD and tried its implementation, but due to a lack of documentation and support, it was seemingly not a feasible solution (If although you can direct me to a detailed tutorial or a great how-to, it will also be appreciated). Plus, example of any case where FreeBSD firewall are implemented in auto-failover in production (using any method), will also be of great help as that would let me know what are the best practices for implementing CARP in cloud based envs. Do keep in mind that this solution will be implemented in prod environment, thus will need to be stable and well-tested.
Any and all help in this regard will be greatly appreciated!
