No failover when Gateway is offline
-
Hello everybody!
I have HA setup with two pfsense-VMs (2.8.0) installed in proxmox (8.4.0) on 2 devices (same model). The WAN interface is a Linux Bridge created in proxmox and added to pfsesne as network hardware. The other LAN interfaces are passed as PCI devices to pfsense. I am testing the failover by unplugging the cables. When I unplug the cable from a port assigned to a LAN interface, pfsense detects that the interface is down and the failover is triggered correctly for all interfaces. When I unplug the WAN cable, pfsense still sees the interface being up (due to proxmox) but detects that the Gateway is offline. In this case both primary and backup become master for the WAN and primary remains master for the LAN interfaces.
Does pfsense HA not handle the case where the gateway is offline?
-
Any info?
For now, I trigger the failover using a cron job that checks whether all gateways are down and then enables CARP maintenance mode. -
@mwd said in No failover when Gateway is offline:
When I unplug the WAN cable,
Both?
As I understood, you're running both nodes on different hardware devices.
Does pfsense HA not handle the case where the gateway is offline?
This case is treated by a multi-WAN setup, but not in HA.
In a HA CARP setup the backup node gets CARP advertisements from the master on each interface. If this is missing, the it takes over the master role.
-
@viragomann said in No failover when Gateway is offline:
Both?
No, only the WAN cable connected to the primary device.
@viragomann said in No failover when Gateway is offline:
In a HA CARP setup the backup node gets CARP advertisements from the master on each interface. If this is missing, the it takes over the master role.
But why doesn't it always take over all the interfaces ?