Two identical PFsense Firewalls (config/packages/version)
Hi PFsense Forum,
I am having an issue I can not solve and I hope someone more knowledgeable can help.
We are using two PFsense firewalls in transparent mode. One is used productively within our datacenter the other will only become online in case of a failure.
Because we are running them in transparent mode and we are using trunks with vlanbridges there is no STP on those interfaces and we can not use HA/CARP.
Yesterday I restored the current config of the productive system onto the backup system. It erased all packages and restarted with a higher pfsense version number than before. This can not happen during a real failure.
As I iunderstand it the PFsense will always erase and reinstall all packages after a config restore.
I am looking for a way to keep both firewalls exactly identical in terms of the software/packages running on it and their configuration, the packages should not be erased and reinstalled just because I restored a config.
You might possibly get away with copying the config.xml & rebooting….
thx, for your quick reply, I will try out your suggestion and see if it actually works.