hi all!
i've 2 splat ngx-r60/hfa04 with cluster-xl in ha-mode running here.
my problem is, when failing over to the standby-mashine the nat-rules to the internet aren't working anymore. vpn-access is still working, but this is without nat.
i do manual nat.
have added
echo 1 > /proc/sys/net/ipv4/conf/eth0/proxy_arp
echo 1 > /proc/sys/net/ipv4/conf/eth1/proxy_arp
which are my 2 interfaces connected to the internet, each with an own public net.
the mac-addresses to /etc/ethers
and also static routes for the natted ip-addresses.
everything works well on one firewall, but on the other, which is exactly identical (except the mac-entries in ethers-file), i've the problems :-(
seems to me like a arp problem, but i've no idea what else to check.
any ideas?
thx!