Shell/Cmd line for HA/CARP/VIP troubleshooting and config?
-
I'm realizing that getting HA/CARP/VIP running properly is quite the detailed process, in which it as raaather easy to break any ability to access pfSense through the GUI / (V)LAN / WAN.
Through it all, I have console shell access.
So (of course) I went looking for shell equivalents to the various GUI configuration and status screens related to HA/CARP/VIP.
I see little if any documentation on this.
At the very least, I want to learn how to accomplish the following from the shell:
- List and Remove CARP IP's (if busted, they will conflict with the other box)
- List and change (or at least clear) sync settings
- Turn off HAproxy
- Create a straightforward way to keep a backup HA machine connected enough to access the Internet
Perhaps others?
The above ought to be enough to get me going. :-D
-
@mrpete said in Shell/Cmd line for HA/CARP/VIP troubleshooting and config?:
I'm realizing that getting HA/CARP/VIP running properly is quite the detailed process, in which it as raaather easy to break any ability to access pfSense through the GUI / (V)LAN / WAN.
So (of course) I went looking for shell equivalents to the various GUI configuration and status screens related to HA/CARP/VIP.
At the very least, I want to learn how to accomplish the following from the shell:
- List and Remove CARP IP's (if busted, they will conflict with the other box)
- List and change (or at least clear) sync settings
- Turn off HAproxy
- Create a straightforward way to keep a backup HA machine connected enough to access the Internet
Answers:
- ifconfig inter.face ip.add.re.ss -alias (temporarily removes any IP, including CARP VIP)
- See below for a console script that can disable CARP
- No solution found for sync settings, but a workaround: with CARP IP's removed from the backup pfSense, I could again plug in the ethernet and access the web GUI
- A console "svc" script (see below) can start, stop and restart services.
Many console scripts are documented here
