We're using a pair (well, 4 technically, including the slaves) of
Arrowpoints to load balance 3 Nokia Checkpoint FW-1 appliances. The
Nokias are working fine, but the AP's aren't doing quite as well.
I've noticed, by watching the firewall logs, that certain packets will not
retain their state correctly, i.e., I mean they will go in one firewall
and come out another firewall. The vast majority of our traffic works,
but occasionally a specific connection will fail.
For instance, one of our admins, when trying to ssh into the ssh gateway,
will consistently go in one firewall and out another one, thus getting
blocked. For now we've got "fastmode" turned on for all of the services,
which generally lets us get around that, but I'd like to get it worked
out.
Is this a known problem with the AP's? We're running 4.01 build 33 I
believe, and I can provide more specifics if needed. Yes, we're using the
ip firewall lines and yes, they're matched up correctly. :)
Thanks,
Nicholas
--
This archive was generated by hypermail 2b30 : Fri Aug 31 2001 - 13:43:29 EDT