(Solve)FailOver not switching.
-
Yes, that is correct.
One important thing I omitted though is that if the main gateway is up and all clients are using it and then the failover gateway fails all states will still be flushed. Even if nothing is using that gateway. That means everything is interrupted unnecessarily.
Steve
-
Got it, I will test all this stuff.
stephenw10, last thing, this will behavior is the same with a LoabBalance setup?
Thanks again for your knowledge.
-
Yes the behaviour is the same for load-balanced gateways. In a load-balance config though it's usually not as bad because you expect to have some connections on both WANs.
However that does mean that killing the states will always kill connections that didn't need to be.Steve
-
@periko said in FailOver not switching.:
stephenw10
I had finally test and see the behavior went a gw goes down.
With a LoadBalance or FailOver setup, no mater if the gw1 is up and u downloading something in gw1 and gw2 goes down.
Pfsense will flush states and affect even the session on online gw's.
There is no way to avoid this right?
I prefer to know this before going to production, thanks.
-
@stephenw10 said in FailOver not switching.:
Flush all states when a gateway goes down i
dont use this setting. It is exactly what you are experiencing
-
Yes that's the expected behaviour if you have state flushing set.
That setting comes from a time when there was no alternative in pf. We are now looking at a better solution there, remove the states only for the gateway that went down. There's no ETA on that though.
Steve
-
@netblues , I forgot to disable this, yes u a right.
-
@stephenw10 Looks like I got understand this part of pfsense, hope soon see this setting works, really will help.
Thanks all for your help. -
P pigbrother referenced this topic on
-
@stephenw10 is the same configuration in 2.7.2 or is new change?
-
Which configuration exactly?
-
@stephenw10 Configuration "State Killing on Gateway Failure".
-
Nope in 2.7.2 you can choose to kill states only on the gateway that is down:
https://docs.netgate.com/pfsense/en/latest/config/advanced-misc.html#state-killing-on-gateway-failure -
@stephenw10 This option "Kill states for all gateways which are down"?
-
Yup
-
@stephenw10 Can you comment on the functionallity listed here: https://www.netgate.com/blog/netgate-to-enhance-gateway-recovery-in-pfsense-plus-version-24.03 will this be available in a CE release at any point? I have an expensive backup link and states don't reset on failback so I end up needing to take a manual action to reset them on 2.7.2
Thanks for your help
-
No plans to add that to CE at this time.
-
@stephenw10 Thanks for confirming.
