Failover and PPPoE
-
Hi.
I have a PPPoE WAN connection with 1 public IP address, and I have two pfSense boxes.
The first pfSense box is working good, but I would like to install the second one to have a failover using CARP or something like that.
How I could manage the PPPoE connection?
Could I configure CARP only on the LAN and have the PPPoE connection active only on the master system?
I could ask my ISP for a subnet, but they give me only one PPPoE account so I cannot have both pfSense boxes connected to the WAN on the same time.I don't like to add a PPPoE router before the pfSense systems (natting the WAN network) because doing so I'll add a single point of failure.
Could you help me, please?
Thank you very much!
Bye. -
The modem will have to do the PPPoE to have stateful failover in that case. CARP can't function with PPPoE.
-
@cmb:
The modem will have to do the PPPoE to have stateful failover in that case. CARP can't function with PPPoE.
Ok, I know, but is it possible to configure the second pfSense router to dial the PPPoE connection only when the first router is down (and so the second router is the master one)?
What if I configure the PPPoE connection on the second router to be on-demand? -
That wouldn't work without some manual hacking and even then isn't likely to do what you really want/need.
It might be best set set the modem to do PPPoE and then have it do 1:1/DMZ from the PPPoE WAN IP to a CARP VIP on the shared segment. Much less hacking, plus you get stateful failover. It does add another layer of NAT, but it may be unavoidable in this case.