Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    CARP + Limiters not working in live ( for states which are moving from master to backup )

    HA/CARP/VIPs
    2
    2
    166
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      manu77 last edited by

      Hello All,

      I noticed, by accident, limiters do not work correctly after a firewall switch due to a carp action.

      For instance, a traffic exists and it's well piped by limiters .

      You decide to place the master firewall in CARP maintenance so you triger a switch from a firewall to another ( master to slave). All traffics are well switched to the slave firewall . This works like a charm :) .
      But the limiters do not work. you realize that traffics initialized by master firewall are not treated by the limiters on the slave .
      For new traffics launched after the CARP switch on the slave firewall, it is ok.

      So pfsync seems to not correctly transfert traffics to limiter and/or limiter daemon is not able to treat traffic if it had not initialize them.

      I've tested different configurations from version 2.4.3 to 2.5.1 -> same results

      An Idea ?

      H 1 Reply Last reply Reply Quote 0
      • H
        helloworld21 Banned @manu77 last edited by

        This post is deleted!
        1 Reply Last reply Reply Quote 0
        • First post
          Last post