I have two WAN IPs in CARP and one stops working for me
-
Dear, how are you? I have two pfsense in HA mode, the replication between both works without problems.
Among the CARP IP that I add, I have my WAN1 and my WAN2, as well as my LAN.
The CARP IP of my WAN1 works without problems. I can enter incoming traffic and define outgoing traffic through said IP.
But the CARP IP of my WAN2 stops working. It lifts for a few minutes and then it falls off. The carp configurations between WAN1 and WAN2 are the same, only the ips change because they are from different providers and are on different interfaces.
The WAN2 interface responds well with the IP that it has placed in each pfsense, we only have problems with the WAN2 CARP IP.
Could someone give me a help? From now on I am very grateful to the community
-
I discovered that meerkat is the one who causes my ip's of the carp wan2 to not work. I had to remove the suricata setting for that interface from wan2 and then remove the ips from carp and recreate them and it started working. the weird thing is that the wan2's meerkat configuration is a copy of the wan1 that works correctly ... any ideas?
-
@erode Can you put Suricata on LAN instead? That will 1) avoid scanning any packets that would normally be blocked by the firewall anyway, and 2) show the LAN IP of devices for the alerts.