Live-CD Firewall Solutions?

paRcat asks: "My company isn't huge, and up until now has done well enough hosting all of our websites/email/etc. We've done all of this over one T1, but recently added another circuit for that rare instance of a fibercut. So since then I have been researching different options for configuring the existing Linux firewall (debian+iptables) to allow using the second circuit for load-balancing and failover. The issues I'm running into mostly have to do with recompiling the kernel using certain patches and creating semi-elaborate routes. Faced with these options, I'm wondering if there are any open source firewall projects out there that will behave happily with the above scenario. Do any free projects actually give this level of connectivity without being overly difficult in the configuration? I've gone the compile-your-own kernel route in the past, but now I'd just like to drop in a premade solution. A configurable live-CD would be perfect."

Firewall LiveCDs

Several LiveCD Firewalls. Check out m0n0wall first.

bonding

[Keruo]

bonding is better way to go with multilink
atleast if the operator on both of the links is same
you'll end up with one ip and both links in use, or you can configure the other to be failover

see /usr/src/linux/Documentation/networking/bonding.tx t for more information

OpenBSD's CARP

[nuxx]

Sounds to me like you want to use OpenBSD's carp. Nice, open-source, easy to configure firewall fail-over solution.

PFSense

[I'mJVC]

Check out PfSense, originally based off M0n0wall, I've found it to have the best balance between features, stability and ease of use.

Right now it offers both Live CD or HD install option, and it's nearing a stable (1.0) release, try it...

http://www.pfsense.com/

Re:M0n0wall

[TheMysteriousFuture]

if you're gonna run it on a PC, check out pfSense instead... it forked from m0n0wall awhile ago and is doing some great stuff.