Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    FRR BGP routes not updated during CARP HA failover

    Scheduled Pinned Locked Moved
    FRR
    frr bgp failover
    1
    1
    479
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      TO2020
      last edited by

      Dear Community

      I run a pair of pfSense 2.5.2 devices with FRR BGP. I have 5x IPsec VPN tunnels.
      I performed some tests over the weekend where I shut down/halt the MASTER pfSense device and the BACKUP automatically becomes MASTER.
      None of the IPsec VPN tunnels connected after the failover (I made a separate post about that issue), however even after manually connecting all the tunnels and where I could ping across the tunnel to the remote endpoint IP address from the now MASTER pfSense (Diagnostics > Ping), routing did not seem to work.

      Only after Force Service Restart from Services > FRR > Global Settings, traffic started flowing and I could access services across the tunnels.
      One of the tunnels has a static route, and that tunnel was passing traffic immediately once the tunnel was established after HA failover.

      FRR is configured with CARP Status IP, so it seemed that FRR itself was activated during the HA failover.

      Is this a known issue or is there a fix?

      Regards,
      Thomas

      1 Reply Last reply Reply Quote 0
      • First post
        Last post