Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Sync issue - Backup pfSense scrambled configuration - 2.4.4-RELEASE-p3

    HA/CARP/VIPs
    2
    3
    151
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • F
      FarGalaxyNetworks last edited by

      Hello Everyone,

      We are facing two issues while two pfSense fw's are in HA mode.
      The network setup is the following
      Over a dedicated interface named as SYNC both fw are directly :
      Master : 172.31.255.1 / 30
      Backup: 172.31.2255.2 /30
      We permit all IPV4 traffic through that interface in order to be as loose as possible, in terms of troubleshooting. Both systems can ping each other.

      CARP is configured appropriately for each and every IP. Always the CARP of each subnet is .1 and the corresponding pfsense interface IP is .2 and .3 respectivelly and the password for CARP is the same for each CARP accross both firewalls.

      The issues are the following:

      • list item On the BACKUP some CARP entries remain on MASTER state, which apparently is a problem

      • list item Whenever we Force sync config BACKUP's configuration is losing its original configuration. In fact some CARP are losing even the correct Interface where they do actually belong.

      Any hint/help on that issu will be invaluable

      DaddyGo 1 Reply Last reply Reply Quote 0
      • DaddyGo
        DaddyGo @FarGalaxyNetworks last edited by

        @thodoris1982

        @Thodoris1982 "pfSense scrambled configuration - 2.4.4-RELEASE-p3

        Hi,

        by this you mean 2.4.5-p1 😉

        https://docs.netgate.com/pfsense/en/latest/releases/2-4-5-p1.html

        F 1 Reply Last reply Reply Quote 0
        • F
          FarGalaxyNetworks @DaddyGo last edited by

          @daddygo I've updated to the latest version. I still do get issues with the carp IP syncs. I don't get why it's doing a splitbrain master config all the time. Additionaly it does shift the IPs in the list. I don't get why. Is there any way, I can dig deeper log level wise to figure out what actually might be the reason?

          1 Reply Last reply Reply Quote 0
          • First post
            Last post

          Products

          • Platform Overview
          • TNSR
          • pfSense
          • Appliances

          Services

          • Training
          • Professional Services

          Support

          • Subscription Plans
          • Contact Support
          • Product Lifecycle
          • Documentation

          News

          • Media Coverage
          • Press
          • Events

          Resources

          • Blog
          • FAQ
          • Find a Partner
          • Resource Library
          • Security Information

          Company

          • About Us
          • Careers
          • Partners
          • Contact Us
          • Legal
          Our Mission

          We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

          Subscribe to our Newsletter

          Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

          © 2021 Rubicon Communications, LLC | Privacy Policy