Linux based n-way router?

[Lennart Sorensen]

On Fri, Sep 24, 2004 at 02:04:14PM -0400, Andrew Hammond wrote:
> Need to care about which kernel for obvious reasons. Ideally, you want
> this to be a pretty stripped down box. Probably only ssh for admin, and
> then turn on apache only when you're actively admining the firewall app
> layer.
> 
> If you want to monitor, then setting up an SNMP daemon is pretty easy,
> but you might find it easier to just set up mrtg locally. Downside is
> running a web server on your router.
> 
> If performance / reliability justifies the budget, then a pair of HP
> routing switchs would be the way to go:
> http://www.hp.com/rnd/products/routing_switches/9300_series/overview.htm

HP makes network gear?  Who knew.

> Their proprietary VRSP is a big win over STP for layer 2 failover. And
> in term of raw performance, it will blow away any PCI-X bus based PC.
> But the fact that you're asking on this list kind of implies you're not
> looking at this kind of price range. :)

Yeah I know cisco has a proprietary system too.

> Speaking of performance, Lennart recommended aggregating ports (called
> bonding in linux) and running VLANs over them. I tried doing this about
> a year ago and had no luck getting the VLANs to work over the bonded ports.

Actually I said runing one gigabit to a vlan switch.  Bonding just seems
silly and overkill and probably imposible for vlans due to the way vlan
headers are done.

> Instead of using heartbeat, I'd strongly suggest checking out the
> keepalived's VRRP implementation.
> 
> http://www.keepalived.org/

Yeah VRRP does look interesting.

Lennart Sorensen
--
The Toronto Linux Users Group.      Meetings: http://tlug.ss.org
TLUG requests: Linux topics, No HTML, wrap text below 80 columns
How to UNSUBSCRIBE: http://tlug.ss.org/subscribe.shtml