The problem with Virtual IPs
-
Used Netgate XG-1541c pFsense 21.05.02-Release ( amd64)
WAN interface has Virtual IP (IP Alias - IP 1.1.1.15/24 is an example) assigned from the same subnet as the original WAN interface (1.1.1.10/24).
Connection to this Virtual IP (1.1.1.15/24) drops from time to time but gets restored itself without any change. When this happens, the access to the background services which use IP through NAT is lost.
These drops occur 1-2 times during 24 hours.Connection to Netgate XG -1541 and main services using the main IP (1.1.1.10/24) is maintened steady
There was no reason found for Virtual IP drops in logs analysed.
Could you please look into the issue and advise further.
-
@k-tarapata I would suspect arp issues.
How do you see this drops?
Please describe the network env serving the lan segment with the vip.
Also consider a few permanent ping tests.
eg one passing through pf and another coming from somewhere else (e.g wan if we are talking about most vip uses.)
Does it disapear from all pings at the same time? -
Thanks for your reply.
Prompted with ARP suggested an idea in which direction to look for a solution. The problem is most likely related to a feature of the Cisco ASA, which is in the same subnet. At the moment, pfSense is being tested, after changing the network configuration, Virtual IPs problems did not appear.