Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Both routers keep claiming CARP master status due to interface switching.

    Scheduled Pinned Locked Moved HA/CARP/VIPs
    3 Posts 2 Posters 755 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C Offline
      codemonkey76
      last edited by

      I have 2 pfSense firewalls with HA setup. For some reason the backup firewall keeps claiming master status on some of the interfaces, because pfSense gets confused about which interface is which.

      If you look at the 2 pictures attached, Firewall 1 is setup correctly and is showing it is the master for each interface.

      But the second firewall has claimed MASTER status for vlan 20 and vlan 15 because it has switched the interfaces… i can of course fix this by going into firewall 2 and editing the virtual IP and setting the correct interface... but it keeps changing back.
      carp1.PNG
      carp1.PNG_thumb
      carp2.PNG
      carp2.PNG_thumb

      1 Reply Last reply Reply Quote 0
      • DerelictD Offline
        Derelict LAYER 8 Netgate
        last edited by

        You probably have a mismatch between the interfaces on the primary and the interfaces on the secondary. They both need to be exactly the same from top to bottom in all aspects. You can use Status > Interfaces to compare.

        The VIPs are probably syncing from the primary to the "wrong" interface on the secondary.

        Chattanooga, Tennessee, USA
        A comprehensive network diagram is worth 10,000 words and 15 conference calls.
        DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
        Do Not Chat For Help! NO_WAN_EGRESS(TM)

        1 Reply Last reply Reply Quote 0
        • C Offline
          codemonkey76
          last edited by

          That was it, thanks.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.