Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    WAN interface vs CARP WAN Interface

    HA/CARP/VIPs
    2
    2
    503
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • L
      Lon Townsend
      last edited by

      Am I correct to assume that in a normal firewall setup where you would use the WAN Interface, for virtual IPs and what not, that is where the CARP WAN Interface would go under HA. So instead of using the standard wan interface, you are actually using the CARP interface instead.

      1 Reply Last reply Reply Quote 0
      • DerelictD
        Derelict LAYER 8 Netgate
        last edited by

        Depends on what you are configuring/doing.

        You generally want services/VPNs to listen on CARP VIPs. You generally want outbound NAT to be a CARP VIP. You generally want inside clients to use a CARP VIP as their gateway and DNS server (if it's providing DNS).

        Chattanooga, Tennessee, USA
        A comprehensive network diagram is worth 10,000 words and 15 conference calls.
        DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
        Do Not Chat For Help! NO_WAN_EGRESS(TM)

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.