Set failover peer ip on dhcpd the client can't get ip.
-
I set CARP on LAN.
pfsense1 -- LAN -- 192.168.0.254
pfsense2 -- LAN -- 192.168.0.252
CARP LAN -- 192.168.0.253
If I don't set failover peer ip.The client PC can get ip address.
But if I set failover peer ip the client PC can't any ip address.
Whats problem? -
What are you setting the failover IP address to? Is the reciprocal syncing to the other node?
When you have it set, what is the status of the failover group in Status > DHCP Leases?
-
pfsense1 : 192.168.10.254
pfsense2 : 192.168.10.252
LAN CARP VIP : 192.168.10.253
I set pfsense1 failover ip is 192.168.10.252 then pfsense2 will auto show failover ip is 192.168.10.254.
If I set finish.The dhcp lease will error showdhcp_opt5 (LAN1) recover 2019/03/29 02:11:58 unknown-state 2019/03/29 02:11:58
Could I set problem?
-
Looks like they cannot communicate with each other.
-
I have test 192.168.10.254 and 192.168.10.252 ping each other.It's can ping.
-
Well then those would sync up.
-
I sync all.Please see attachment.
-
The dhcp server setup has sync to pfsense2.But user can't get ip address. And dhcp server show that error.
-
So fix the communications between the DHCP servers on that interface. They use TCP/UDP ports 519 and 520.
Perhaps you have some weird floating rules that are blocking it. When you enable HA DHCP pfSense adds pass rules automatically.
-
@Derelict
Hello, I found pfsense2 will auto set failover ip to pfsense1 lan ip when I set pfsense1 failover ip to pfsense2 lan ip.
Is it sync communication ok?
If yes. Have any another problem? -
Yes. That is how it is supposed to work. That happens via the XMLRPC sync interface.
The two DHCP servers communicate for clustering on the actual interfaces that they are servicing DHCP on.
Are there any firewall entries logged for 192.168.10.254 or 192.168.10.252 on ports 519 or 520 on either node?
-
This post is deleted! -
@Derelict
I has set firewall on floating and set interface on LAN and set any to any and port set pass 519 and 520 tcp/udp. But it's show unknown-stats on dhcp-lease.I also set firewall on my lan.Please see attachment.
I haven't connect wan. Could it effect dhcp? -
@Derelict
Hello, I found some error.
Please see attachment.
You see the mac address is fc:ec:da:d1:ab:40
But I search all pfsense1 and pfsense2 network interface. I am not found the same mac address.
What's this problem? -
check the clocks on both nodes