<html><head><style type="text/css"><!-- DIV {margin:0px;} --></style></head><body><div style="font-family:times new roman, new york, times, serif;font-size:12pt"><div>OK, my turn to ask a question. I have a situation where our firewall (seven or more years old) is no longer supported and it has been losing connections on any box that I upgrade to a 2.6 kernel from a 2.4. I have Netscreen 100 firewalls and can't even get firmware updates.<br><br>So, the question that I post to the group:<br>I have a fairly fast Internet connection to Vaspian. I have an environment with 30+ servers and less than 10 workstations that need to be connected. I need to be able to have the web servers (about 6 for the moment) accessible on the Internet but I have to be able to use stateful NAT to be able to have the firewall point to several web servers for a single IP address for load balancing, etc. If the firewall did some monitoring to determine
that a web server has failed and can remove it from the pool, that would be a bonus.<br><br>I intend to start monitoring the servers with Nagios so maybe Nagios could be used to control the web server pools.<br><br>I have actually thought about building a Linux firewall to do all of this, using shorewall but I don't know about the server pool thing. I haven't researched that at all.<br><br>So, I'm soliciting opinions. I need to know as many options as I can so that I can make an intelligent decision on this. Note that we're expecting significant growth in our traffic, here. As always, cheaper is better.<br><br>Thanks...<br><br>Cheers!<br><br>Bob<br></div></div><br>
<hr size=1>Never miss a thing. <a href="http://us.rd.yahoo.com/evt=51438/*http://www.yahoo.com/r/hs"> Make Yahoo your homepage.</a>
</body></html>