Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    CARP ISP Routing Question

    Scheduled Pinned Locked Moved HA/CARP/VIPs
    3 Posts 2 Posters 1.9k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      MrEmbedded
      last edited by

      Hi All,

      I have setup a failover cluster with 2 boxes using pfsync+carp.  I read in the example documentation that all the machines behind each interface on the firewall should use the associated CARP address as their gateway IP.  But the WAN routing confuses me a bit.

      My question is this:  On the WAN side I am using 3 static IP addresses from my ISP, one for the WAN interface on each box and one is the CARP IP.  Which IP should the ISP route traffic through?  Should they be using  the master firewall IP, the slave firewall IP or the CARP IP address?

      1 Reply Last reply Reply Quote 0
      • A
        anthonyg
        last edited by

        You want to use the CARP IP address. Otherwise the failover wont work. To do this you need to change your NAT. Go to Firewall > NAT. Switch to manual outbound NAT and edit the auto created rule. Change the NAT Address to your WAN CARP IP.

        1 Reply Last reply Reply Quote 0
        • M
          MrEmbedded
          last edited by

          Ok that clarifies things. Thanks for the quick reply

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.