Linux - GeneralThis Linux forum is for general Linux questions and discussion.
If it is Linux Related and doesn't seem to fit in any other forum then this is the place.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I work for a company that manages websites and I currently have a WAF (Web Application Firewall) in place in the Data Center. I am looking for a way to create a "backup or failover" WAF so that when the main one goes down, this second WAF will pick up (at least until I can get the main back up). Our Web Servers are running Windows server 2008 but i'm looking to put this backup onto a CentOS 5.2 system. I've already tried using a load balancer as the backup but couldn't establish the connections well enough. Does anybody have any good ideas on a software solution that is open source and runs on linux?
I work for a company that manages websites and I currently have a WAF (Web Application Firewall) in place in the Data Center. I am looking for a way to create a "backup or failover" WAF so that when the main one goes down, this second WAF will pick up (at least until I can get the main back up). Our Web Servers are running Windows server 2008 but i'm looking to put this backup onto a CentOS 5.2 system. I've already tried using a load balancer as the backup but couldn't establish the connections well enough. Does anybody have any good ideas on a software solution that is open source and runs on linux?
Thanks in advance for any ideas!
Check out the heartbeat capabilities of Linux. I know they come with OpenSuSE, and probably with most other 'server grade' Linux distros. These pages may help you:
If you've already got a working Linux replacement for the Windows boxes, you should be able to use HA to get something going.
One thing I did (very low-tech, but useful), was to put a second NIC into each of my two boxes. Static IP's, but connected to each other via a crossover ethernet cable. Since they could only see each other, I wrote a small, simple script to ping the main box from the backup. Since I removed the routers/swtiches/everything else from the middle, I knew if the ping failed, the main box had problems. The backup box would then change its IP address to that of the main box, and bring up the services. Not foolproof, I know, but it worked for what I needed, and was quick, cheap, and easy to implement.
thanks for the idea but couldn't get it passed by the big guys. Didn't want to mess with the existing WAF setup so i actually was able to find a program called Profense by Armorlogic. It's a web application firewall that can be downloaded from www.armorlogic.com and they have a Professional version with lots of features (that you have to pay for) or else they have a free Base version which was slimmed down a little bit, but actually all that we needed it for. Very easy to configure and figure out. You load the ISO onto a blank system, set the ip, netmask, and gateway and do everything else over a web interface. Check it out some time. thanks again
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.