Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    CARP changes my LAN VIP Interface After Sync

    Scheduled Pinned Locked Moved HA/CARP/VIPs
    2 Posts 2 Posters 894 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C Offline
      Cornelp
      last edited by

      I have this weird problem.

      2 Firewalls:
      Firewall 1 Master

      Interfaces
      WAN DHCP
      LAN 10.2.30.2/29
      GST 192.168.150.2/24
      CARP 10.2.40.1/24

      Firewall 2 Backup

      Interfaces
      WAN DHCP
      LAN 10.2.30.3/29
      GST 192.168.150.3/24
      CARP 10.2.40.2/24

      VIP on both firewalls:
      LAN 10.2.30.1/29
      GST 192.168.150.1/24

      Now my syncing goes over the CARP Interface. Its the interface that connects both firewalls, dedicated.
      My problem is this:
      When I make a change on the MASTER Firewall (adding new Rule), etc, it makes changes on the Backup Firewall, BUT, what happens is it changes my VIP from
      10.2.30.1/29      Interface LAN
      to
      10.2.30.1/29      Interface CARP

      Then I get an error that says "Sorry but we could not find a matching real interface subnet for the virtual IP address 10.2.30.1"

      Im guessing this is due to the fact that the VIP changes from LAN to CARP.
      Why the heck is this happening? Can someone please help me? PLEASE?

      Thank You…

      1 Reply Last reply Reply Quote 0
      • V Offline
        viragomann
        last edited by

        Do you have your interfaces assigned in the same order on both pfSense in Interfaces > assign? This is essential for syncing correctly.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.