BSDCan2007 - Confirmed Schedule

BSDCan 2007
The Technical BSD Conference

Scott Ullrich
Chris Buechler
Day 4
Room SITE A0150
Start time 15:00
Duration 01:00
ID 26
Event type Lecture
Track System Administration
Language English

Failover and Load Balancing with pfSense

When things fail, be prepared.

Last year many BSDCan attendees saw an overview of what pfSense is all about. Since then, the first stable release of pfSense is out and this presentation will cover a few of the more advanced features that are available. This presentation will cover how the multi-WAN and failover capabilities in pfSense function, and how to implement them in your environment.

  • CARP
The inclusion of OpenBSD's CARP allows for seamless failover in the case of hardware failure, including maintaining the state table. This also allows for firewall maintenance and upgrades without any loss of network connectivity.
  • Multi-WAN failover
How you can connect multiple Internet connections to your firewall and allow for failover between them in the case of an outage.
  • Policy based routing + failover
How you can direct specific traffic over a specific WAN interface, and also fail over to another WAN interface if your desired connection is down.
  • DNS Failover
When one of your WAN connections fails, the multi-WAN failover capabilities of pfSense keep your Internet up and running. But what about DNS-based services you provide to external users, like web site hosting? DNS failover comes into play here by automatically updating your external DNS records to direct users to the appropriate WAN connection.
  • Incoming and Outgoing Load Balancing
The outgoing load balancing functionality of pfSense allows you to load balance your outbound Internet traffic over multiple WAN connections. The incoming load balancing enables you to load balance incoming traffic from the Internet to multiple internal servers.