Once the network topology has been established, configuring the HA and conntrackd becomes simple. HA ConfigurationKeepalived uses VRRP (Virtual Router Redundancy Protocol) protocol to provide HA system. We use the sample configuration file keepalived.conf in the doc/sync directory of the conntrack-tools package, copy it to the /etc/keepalived directory and modify the parameters accordingly. The actual … Đọc tiếp Building a fault-tolerant firewall system with virtual machines: Configuring HA and conntrackd

Routing is an interesting and important issue. Not only smoothing traffic, routing work also determines the path of a packet so that the correct packet filtering can be performed.We start from the client. There are two ways out from the client, so which way to go? 192.168.2.1 on the firewall machine fw-1 cannot be set … Đọc tiếp Building a fault-tolerant firewall system with virtual machines: Routing

To see the effect of spice agent and USB redirection we practice the tasks like this: 1. Perform drag and drop to transfer the gnome-backgrounds-40.1-1.x86_64.rpm package from the client to the virtual machine 2. Copy a text from the client and paste it into gedit's editing area on the virtual machine 3. While working on … Đọc tiếp Building a fault-tolerant firewall system with virtual machines: Testing spice agent and USB redirection