WAN VIP with status of MASTER on both nodes
-
Hi, we have 2 identical boxes of PFsense and we added 3 interfaces on each node, WAN, LAN, and SYNC and we did all the configurations based on the documentation however we noticed that on the second node which supposed to be the backup the WAN VIP is master as well like the primary node, but the LAN is mentioned backup with no issues, the SYNC is working fine, we are owning that WAN VIP IP however it's not attached physically to any node of them we just added it from the VIP settings on the console so did we missed something?
-
Ensure that the WAN interfaces of both boxes are able to communicate.
Are they connected to a switch? -
Thanks @viragomann for your reply, the 3 public IPs we have are /23 so does that an issue? do we need /29 to support 3 IPs? this is by default from our ISP.
-
No, only the WAN IPs of the two pfSense boxes have to be within the same subnet. A /29 is just the minimal network size for a common CARP setup with the two WAN IPs and the WAN VIP within a subnet. But it doesn't matter if the subnet is larger.