Thanks for the input on my ARP question the other day.
Test system worked A OK by setting up fake eth0:1 eth0:2 etc for each
MASQed ip
Went to install on live system at host,
after waiting for 2 hours for ISP to refresh the ARP cache on the
router.. hey presto everything started working...
Sub Question .. Waiting for ISP to flush ARP is a pain ( How can I force
a gratutious arp for the MASQ'd addresses, would be usefull if I'm
failing over in a firewall cluster...
Linux HA only gartuitous ARPs the Virtual IP ?)
Anyway main Vague question :
Linux Firewall was MAQing a CISCO 416 Local Re-Director
this was setup as a bridge for 4 web servers http & https
CISCOs MASQ'd IP address loadbalances across the 4 boxes evenly
(All working fine before changing firewall to linux)
When running on the Linux firewall (set to default ACCEPT everything)
All MASQ'd servers working fine from outside world...
http requests were balanced evenly A OK
BUT https request were dropped !
I had to take the linux box out in a panic and put checkpoint back... sigh
Refreshed the ARP cache again and everything http & https worked fine...
Unfortuantely I don't have a CISCO on my test network so can't reproduce
the problem...
Has anyone had any similar problems ?
--
Regards,
Malcolm Turnbull
IT Manager
Crocus.co.uk Ltd
01344 629661
07715 770523
http://www.crocus.co.uk/
