| pfsync.4 (159338) | pfsync.4 (171172) |
|---|---|
| 1.\" $OpenBSD: pfsync.4,v 1.22 2005/02/24 15:53:17 jmc Exp $ | 1.\" $OpenBSD: pfsync.4,v 1.24 2006/10/23 07:05:49 jmc Exp $ |
| 2.\" 3.\" Copyright (c) 2002 Michael Shalayeff 4.\" Copyright (c) 2003-2004 Ryan McBride 5.\" All rights reserved. 6.\" 7.\" Redistribution and use in source and binary forms, with or without 8.\" modification, are permitted provided that the following conditions 9.\" are met: --- 9 unchanged lines hidden (view full) --- 19.\" IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, 20.\" INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT 21.\" NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF MIND, 22.\" USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY 23.\" THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT 24.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF 25.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. 26.\" | 2.\" 3.\" Copyright (c) 2002 Michael Shalayeff 4.\" Copyright (c) 2003-2004 Ryan McBride 5.\" All rights reserved. 6.\" 7.\" Redistribution and use in source and binary forms, with or without 8.\" modification, are permitted provided that the following conditions 9.\" are met: --- 9 unchanged lines hidden (view full) --- 19.\" IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, 20.\" INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT 21.\" NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF MIND, 22.\" USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY 23.\" THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT 24.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF 25.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. 26.\" |
| 27.\" $FreeBSD: head/contrib/pf/man/pfsync.4 159338 2006-06-06 12:35:53Z glebius $ | 27.\" $FreeBSD: head/contrib/pf/man/pfsync.4 171172 2007-07-03 12:30:03Z mlaier $ |
| 28.\" 29.Dd June 6, 2006 30.Dt PFSYNC 4 31.Os 32.Sh NAME 33.Nm pfsync 34.Nd packet filter state table logging interface 35.Sh SYNOPSIS --- 168 unchanged lines hidden (view full) --- 204.Nm 205and 206.Xr carp 4 207traffic through. 208The following should be added to the top of 209.Pa /etc/pf.conf : 210.Bd -literal -offset indent 211pass quick on { sis2 } proto pfsync | 28.\" 29.Dd June 6, 2006 30.Dt PFSYNC 4 31.Os 32.Sh NAME 33.Nm pfsync 34.Nd packet filter state table logging interface 35.Sh SYNOPSIS --- 168 unchanged lines hidden (view full) --- 204.Nm 205and 206.Xr carp 4 207traffic through. 208The following should be added to the top of 209.Pa /etc/pf.conf : 210.Bd -literal -offset indent 211pass quick on { sis2 } proto pfsync |
| 212pass quick on { sis0 sis1 } proto carp keep state | 212pass on { sis0 sis1 } proto carp |
| 213.Ed 214.Pp 215If it is preferable that one firewall handle the traffic, 216the 217.Ar advskew 218on the backup firewall's 219.Xr carp 4 220interfaces should be set to something higher than --- 22 unchanged lines hidden (view full) --- 243.Xr inet 4 , 244.Xr inet6 4 , 245.Xr ipsec 4 , 246.Xr netintro 4 , 247.Xr pf 4 , 248.Xr pf.conf 5 , 249.Xr protocols 5 , 250.Xr rc.conf 5 | 213.Ed 214.Pp 215If it is preferable that one firewall handle the traffic, 216the 217.Ar advskew 218on the backup firewall's 219.Xr carp 4 220interfaces should be set to something higher than --- 22 unchanged lines hidden (view full) --- 243.Xr inet 4 , 244.Xr inet6 4 , 245.Xr ipsec 4 , 246.Xr netintro 4 , 247.Xr pf 4 , 248.Xr pf.conf 5 , 249.Xr protocols 5 , 250.Xr rc.conf 5 |
| 251.Xr ifconfig 8 , 252.Xr ifstated 8 , 253.Xr tcpdump 8 |
|
| 251.Sh HISTORY 252The 253.Nm 254device first appeared in 255.Ox 3.3 . 256The 257.Nm 258device was imported to 259.Fx 5.3 . | 254.Sh HISTORY 255The 256.Nm 257device first appeared in 258.Ox 3.3 . 259The 260.Nm 261device was imported to 262.Fx 5.3 . |