CARP LAN both are master.

sullrich

I just commited some fixes for this.  Please install a snapshot from http://snapshots.pfsense.com/FreeBSD6/RELENG_1_2/updates/ in 2-3 hours from now.

dtran

I updated firmware on both boxes.  It is showing:

1.2-RC3
built on Mon Dec 10 16:14:30 EST 2007

anyway, the new firmware still showing the same status as before. 
On the 2nd box, wan-carp is "back-up" and lan-carp status is still "master" when captive portal is enabled on the 2nd box.  At the same time, box #1 is showing both wan-carp and lan-carp as master (captive portal also enabled),

Also, when I manually disable captive portal on the second box, console via com port is showing:

IP firewall unloaded
Warning: memory type IpFw/IpAcct leaked memory on destroy (1 allocations, 1024 b
ytes leaked).
ipfw2 (+ipv6) initialized, divert loadable, rule-based forwarding enabled, defau
lt to accept, logging disabled

sullrich

Do you see two new rules of "ipfw show" that mention carp and pfsync?

dtran

no - I did not see that at all.
I compared the old output and new and they are nearly identical.
Let me look closer.

edit:  I did not see anything different.

sullrich

Tell me if /etc/inc/captiveportal.inc has pfsync and carp in it.

You can do this from a shell: cat /etc/inc/captiveportal.inc | grep pfsync

dtran

No. nothing there.
grep for pfsync in /etc/inc/captiveportal.inc does not show any occurrence of pfsync.

sullrich

Then you must have upgraded before the snapshot server created the newer images.

Please upgrade to an image from http://snapshots.pfsense.com/FreeBSD6/RELENG_1_2/updates/pfSense-Full-Update-1.2-RC3.tgz

dtran

do you have the full-embedded image because that's what I'm using here.
Thanks

edit: I'm getting the pfSense-Embedded-Update-1.2-RC3.tgz - will that work?

edit 2:  I upgraded both boxes with new image.
cat /etc/inc/captiveportal.inc | grep pfsync is not showing anything.

The 2nd box is still showing "master" on lan-carp when captiveportal is enabled.
I guess the pfSense-Embedded-Update-1.2-RC3.tgz does not have the patch.
system overview is showing: 
1.2-RC3
built on Tue Dec 11 11:52:19 EST 2007

sullrich

Reinstall from a recent snapshot then, please.

dtran

Do you mean you want me to physdiskwrite using the pfSense-Embedded-Update-1.2-RC3.tgz rather than the firmware load via the GUI ?

sullrich

Yep.

dtran

I'm sorry, I think i am missing something elementary here.
physdiskwrite using the pfSense-Embedded-Update-1.2-RC3.tgz - cannot boot after that

Using an older image, I can boot up just fine.

I notice that, with the new imagem using physdiskwrite I get:

Found compressed image file
62023680/62023680 bytes written in total

and using and older image, I get:
Found compressed image file
122441728/122441728 bytes written in total

sullrich

http://snapshots.pfsense.com/FreeBSD6/RELENG_1_2/embedded/pfSense.img.gz .. That other file was an update file.. Sorry.

dtran

Reinstalled from scratch using the suggested snapshot.
Problem is still there. 
2nd box is still showing lan-carp as master when captive portal is enabled.

cat /etc/inc/captiveportal.inc | grep pfsync is not showing anything.

note: reinstall done on both boxes..

dtran

Hi,
Any new development on this ? - Thanks

sullrich

Our snapshot system is busted currently.  There is an open ticket that I need to check into.

In the meantime, replace /etc/inc/captiveportal.inc with http://pfsense.com/cgi-bin/cvsweb.cgi/pfSense/etc/inc/captiveportal.inc?rev=1.58.2.42.2.6;content-type=text%2Fplain;only_with_tag=RELENG_1_2

dtran

I replaced the captiveportal.inc you provided on both boxes.

• cat /etc/inc/captiveportal.inc | grep pfsync is showing:
  $cprules =  "add 500 set 1 allow pfsync from any to any\n";

• ipfw show is showing:
  00500 1347 328072 allow pfsync from any to any
  00500 2086 116816 allow carp from any to any
  00500  11    608 allow ip from 128.97.205.2 to any out via rl2

scenario #1

• box#1 (captiveportal ON), box#2 (captiveportal OFF).
  On box#1 - wan-carp and lan-carp are both master
  On box#2 - wan-carp is backup and lan-carp is master

Before replacing the file, this showed "backup" for both carps.

Scenario #2

• box#1 (captiveportal ON), box#2 (captiveportal ON).
  Same as above.

sullrich

Well I am at my wits end then.  This really should have fixed it.

dtran

I'm going to tear down everything and start from scratch all over again.
This time I will configure everything manually rather than upload the configuration.
I've encountered minor quirks before when uploading the config.  I will report back.
And thanks for your help.  I really appreciate it.

morbus

I had something like this with my cluster. (but not using CP I didn't think that worked with CARP has this been fixed?)

After running CARP for ages with no problems I decided to unplug the KVM from the slave to use on another machine. So I unplugged it and rebooted the slave and up it came all fine so went back to the WebGUI to check and after a few mins of fiddling the slave became master on the LAN on its own. So rebooted and same prob so I plugged the kvm back in and no problem.

It seemed to be having some issue sharing IRQs for the nics with no kvm attached. In the end I fiddled with the IRQ settings changing them from auto to fixed and it has been fine ever since.

I cant remember what the message was but it would pop up on the console

So might be worth a look