CARP + static route / secondary firewall



  • I have a internal and external firewall setup internal firewall appears to be working ok with carp. But on the external firewall set when I add the static route back to the internal firewall lan it only works on the primary firewall, if you look at the route table on the primary it is added on the physical interface, on the secondary firewall it is added on the carp interface.

    firewall01 route table :

    10.26.0.0/23      192.168.120.15    UGS        0    37432  bge0
    172.26.0.0/24      192.168.120.15    UGS        0        0  bge0

    firewall02 route table :

    Internet:
    Destination        Gateway            Flags    Refs      Use  Netif Expire
    10.26.0.0/23      192.168.120.15    UGS        0    15420  carp0    <–- this route
    172.26.0.0/24      192.168.120.15    UGS        0        0  carp0 <---- and this route


Locked