Two pfsense firewall as in active active

anilkapoorbind

Hi,

I have 2 public IPs, can I configure two pfsense firewall with two different IPs.
I have only one flat network, can I keep these firewalls in active active or active-passive so that if one firewall is down other takes up the tasks.

Ps- because today we faced physical nic card issue on the firewall, "watchdog timeout error", on the LAN port.
I searched and found that it is mostly because network was having load, since everyone is working from home.

dotdash

You can't do active/active. The documentation covers CARP active/passive configurations, but that requires three public IPs.
If you are getting a watchdog error, I would consider replacing the LAN nic. If it's something like a Realtek, put in an Intel card.

anilkapoorbind

@dotdash currently we are in lockdow, we can't replace nic,
I can get 3 puclic IPs,
Hoe to configure active passive

dotdash

Start here:
https://docs.netgate.com/pfsense/en/latest/book/highavailability/index.html