Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    IPSEC settings create fine, does not delete from carp member.

    Scheduled Pinned Locked Moved
    HA/CARP/VIPs
    2
    3
    2.0k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • V
      vito
      last edited by

      I am not sure if this was a fluke or by design..but wanted to post.

      I have a 2 node carp cluster that when the IPSEC vpn was created everything was fine.
      When i deleted the IPSEC vpn from the master, it never deleted from the carp member.

      I could not test anymore on the device, but wanted to put this out there just in case someone else has seen this.

      1 Reply Last reply Reply Quote 0
      • V
        vito
        last edited by

        After  more testing, Carp members get IPSEC settings
        but…
        If i turn off ipec from master, ipsec stays active on carp member.

        Is this by design?
        What if you need the tunnel off and disable ipsec on the master and then a carp member picks up due to fail over?

        1 Reply Last reply Reply Quote 0
        • C
          cmb
          last edited by

          The last IPsec config, if deleted, would not be removed from the secondary in 2.0. That's fixed in 2.0.1.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post