LAN CARP just started dropping traffic.
-
I have a HA cluster of two PF sense netgate boxes. They have ran fine for two years. My box just started dropping packets on the CARP address for my LAN network. This has resulted in the internet not being usable.
If I ping my LAN CARP VIP I see a 30-60% packet loss. If I ping from my LAN CARP VIP is see the same results. If I ping my physical LAN IP address I see no packet loss. If I ping from my physical LAN IP address I see no packet loss.
I have investigated to see if something on the network had the same VHID or IP address. And to be sure I also changed the CARP VIP address and its VHID. I have failed the system to my backup firewall, and the issue persisted. I have also shutdown my backup firewall, and the issue persisted.
I need help diagnosing this issue.
-
Do you use pfBlocker and did you update it recently?
-
@steveits I was using pfBlocker, I installed it about 2 months ago, and in my attempts to troubleshoot this issue I uninstalled the package.
-
@steveits Thanks for the link, looks like that's my issue.