CARP switch Master/Backup every 15 minutes

marcolefo

So, we have reinstalled the BACKUP.
Then we have shutdowned the MASTER.

The BACKUP became MASTER with no problem.

But the issue is still present. Every 15 minutes we lost network during 4 ou 5 ping and then the network comes back.

So I don't think it's a HA issue.

In pfsense log, we see nothing.

We are lost.

SteveITS

@marcolefo So in your initial description they are both master? Sounds like a connectivity loss between them every 15 minutes. Switch problem?

marcolefo

@steveits no the backup become master (as the log says) but on the GUI it's still BACKUP.

And note that the network happens too when the MASTER has been shutdowned.

I don't know if there is a link there is a cron every 15 minutes that launch /etc/rc.filter_configure_sync/rc.filter_configure_sync

marcolefo

We have powered on MASTER.
Since BACKUP reinstall we have notications XMLRPC Error with Operations timed out

A communications error occurred while attempting to call XMLRPC method host_firmware_version: Unable to connect to tls://X.X.X.252:443·. Error: Operation timed out @ 2022-12-01 17:33:24
A communications error occurred while attempting to call XMLRPC method exec_php: Unable to connect to tls://X.X.X.252:443. Error: Operation timed out @ 2022-12-01 17:33:26
A communications error occurred while attempting to call XMLRPC method exec_php: Unable to connect to tls://X.X.X.252:443. Error: Operation timed out @ 2022-12-01 17:34:10
A communications error occurred while attempting to call XMLRPC method exec_php: Unable to connect to tls://X.X.X.252:443. Error: Operation timed out @ 2022-12-01 17:34:53
A communications error occurred while attempting to call XMLRPC method host_firmware_version: Unable to connect to tls://X.X.X.252:443. Error: Operation timed out @ 2022-12-01 17:35:04
A communications error occurred while attempting to call XMLRPC method host_firmware_version: Unable to connect to tls://X.X.X.252:443. Error: Operation timed out @ 2022-12-01 17:35:05
A communications error occurred while attempting to call XMLRPC method exec_php: Unable to connect to tls://X.X.X.252:443. Error: Operation timed out @ 2022-12-01 17:35:08
A communications error occurred while attempting to call XMLRPC method exec_php: Unable to connect to tls://X.X.X.252:443. Error: Operation timed out @ 2022-12-01 17:35:37
A communications error occurred while attempting to call XMLRPC method exec_php: Unable to connect to tls://X.X.X.252:443. Error: Operation timed out @ 2022-12-01 17:35:51
A communications error occurred while attempting to call XMLRPC method exec_php: Unable to connect to tls://X.X.X.252:443. Error: Operation timed out @ 2022-12-01 17:36:21
A communications error occurred while attempting to call XMLRPC method exec_php: Unable to connect to tls://X.X.X.252:443. Error: Operation timed out @ 2022-12-01 17:36:34
A communications error occurred while attempting to call XMLRPC method merge_installedpackages_section: Unable to connect to tls://X.X.X.252:443. Error: Operation timed out @ 2022-12-01 17:37:04
A communications error occurred while attempting to call XMLRPC method exec_php: Unable to connect to tls://X.X.X.252:443. Error: Operation timed out @ 2022-12-01 17:37:18
A communications error occurred while attempting to call XMLRPC method exec_php: Unable to connect to tls://X.X.X.252:443. Error: Operation timed out @ 2022-12-01 17:37:48
A communications error occurred while attempting to call XMLRPC method exec_php: Unable to connect to tls://X.X.X.252:443. Error: Operation timed out @ 2022-12-01 17:38:01
A communications error occurred while attempting to call XMLRPC method exec_php: Unable to connect to tls://X.X.X.252:443. Error: Operation timed out @ 2022-12-01 17:38:31
A communications error occurred while attempting to call XMLRPC method merge_installedpackages_section: Unable to connect to tls://X.X.X.252:443. Error: Operation timed out @ 2022-12-01 17:38:45
A communications error occurred while attempting to call XMLRPC method exec_php: Unable to connect to tls://X.X.X.252:443. Error: Operation timed out @ 2022-12-01 17:39:28
A communications error occurred while attempting to call XMLRPC method exec_php: Unable to connect to tls://X.X.X.252:443. Error: Operation timed out @ 2022-12-01 17:40:12 

SteveITS

@marcolefo said in CARP switch Master/Backup every 15 minutes:

no the backup become master (as the log says)

But then there should be a log on the primary that it became backup? If you're saying it successfully/correctly moves?

but on the GUI it's still BACKUP

The log entries you posted are all within the same second so it would be tough to catch in the GUI.

/etc/rc.filter_configure_sync/rc.filter_configure_sync

Not /etc/rc.filter_configure_sync? That shorter path is a normal file and is from time based rules: https://forum.netgate.com/topic/137911/cron-job-etc-rc-filter_configure_sync. If that causes a connectivity break that could cause the flapping.

Do you have a lot of rules? The System Patches package has a patch for https://redmine.pfsense.org/issues/12827.

marcolefo

@steveits we have changed the switch with no change.

Perhaps LACP problem ?

marcolefo

@steveits said in CARP switch Master/Backup every 15 minutes:

@marcolefo said in CARP switch Master/Backup every 15 minutes:

no the backup become master (as the log says)

But then there should be a log on the primary that it became backup? If you're saying it successfully/correctly moves?

but on the GUI it's still BACKUP

The log entries you posted are all within the same second so it would be tough to catch in the GUI.

/etc/rc.filter_configure_sync/rc.filter_configure_sync

Not /etc/rc.filter_configure_sync? That shorter path is a normal file and is from time based rules: https://forum.netgate.com/topic/137911/cron-job-etc-rc-filter_configure_sync. If that causes a connectivity break that could cause the flapping.

Yes it's a bug of my fingers ;). The cron is exactly :

0,15,30,45 	* 	* 	* 	* 	root 	/etc/rc.filter_configure_sync

Do you have a lot of rules? The System Patches package has a patch for https://redmine.pfsense.org/issues/12827.

Yes a lot of rules we have. I will take a look at this link now

marcolefo

@steveits said in CARP switch Master/Backup every 15 minutes:

Do you have a lot of rules? The System Patches package has a patch for https://redmine.pfsense.org/issues/12827.

I am quite a noob... I don't find the way to install patch...

marcolefo

@marcolefo ok RTFM : https://docs.netgate.com/pfsense/en/latest/development/system-patches.html

Need to sleep sorry for the flood.

marcolefo

@steveits thanks a lot !

The patch is working. No more ping lost no more zoom freeze, happiness.

I have another problem: no more sync between MASTER and BACKUP. I will make another thread ;).

Thanks again.

marcolefo

Ok everything is ok now.
The sync problem was a bad rule on pfsync interface.
Thanks again for your help and have a nice week end