Do all CARP-configured interfaces on a pfSense box have the same "worth"?


  • Hi,

    Do all CARP-configured interfaces on a pfSense box have the same "worth"?

    For example, if the WAN interface on the backup node stops receiving CARP advertisements from the master, I do want (and expect it) to promote itself to master. However, in my setup I have many VLAN interfaces on the LAN side. If only a single one of these should stop receiving advertisements from the master, I don't necessarily want this to be enough for the backup node to become master since any node failover does result in inconveniences for our users (OpenVPN sessions have to be re-established among others, and FRR OSPF adjacencies don't always recover gracefully either). So I'm looking to assign an "importance" value to each CARP-configured interface so that failover would not occur unless either a given failed interface is important enough to warrant failover, or a certain number of "less important" interfaces fail simultaneously and their combined importance value is enough to trigger the failover.

    Reading the https://docs.netgate.com/pfsense/en/latest/highavailability/index.html page I couldn't readily see anything regarding this concept.

    Is this something that's possible with pfSense and documented somewhere?

    Thanks,
    -Martin