Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

IPSEC / CARP - Re-Keys on failover

IPsec

1

1

305

Log in to reply

R

RusG3G
last edited by

Hi,

We recently configured PFSense is a HA (Active/Passive) setup, where IPSEC is done to a CARP interface. When the firewall is failed-over to the secondary node the VPN's all re-key.

My question is;

Is there a way to avoid this?
Is this a limitation of the PFSense IPSEC / CARP implimentation?

Thanks
1 Reply Last reply
Reply Quote 0

Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.

1 / 1