Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Shell/Cmd line for HA/CARP/VIP troubleshooting and config?

    Scheduled Pinned Locked Moved
    HA/CARP/VIPs
    1
    2
    897
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • MrPeteM
      MrPete
      last edited by

      I'm realizing that getting HA/CARP/VIP running properly is quite the detailed process, in which it as raaather easy to break any ability to access pfSense through the GUI / (V)LAN / WAN.

      Through it all, I have console shell access.

      So (of course) I went looking for shell equivalents to the various GUI configuration and status screens related to HA/CARP/VIP.

      I see little if any documentation on this.

      At the very least, I want to learn how to accomplish the following from the shell:

      • List and Remove CARP IP's (if busted, they will conflict with the other box)
      • List and change (or at least clear) sync settings
      • Turn off HAproxy
      • Create a straightforward way to keep a backup HA machine connected enough to access the Internet

      Perhaps others?

      The above ought to be enough to get me going. :-D

      MrPeteM 1 Reply Last reply Reply Quote 0
      • MrPeteM
        MrPete @MrPete
        last edited by

        @mrpete said in Shell/Cmd line for HA/CARP/VIP troubleshooting and config?:

        I'm realizing that getting HA/CARP/VIP running properly is quite the detailed process, in which it as raaather easy to break any ability to access pfSense through the GUI / (V)LAN / WAN.

        So (of course) I went looking for shell equivalents to the various GUI configuration and status screens related to HA/CARP/VIP.

        At the very least, I want to learn how to accomplish the following from the shell:

        • List and Remove CARP IP's (if busted, they will conflict with the other box)
        • List and change (or at least clear) sync settings
        • Turn off HAproxy
        • Create a straightforward way to keep a backup HA machine connected enough to access the Internet

        Answers:

        • ifconfig inter.face ip.add.re.ss -alias (temporarily removes any IP, including CARP VIP)
        • See below for a console script that can disable CARP
        • No solution found for sync settings, but a workaround: with CARP IP's removed from the backup pfSense, I could again plug in the ethernet and access the web GUI
        • A console "svc" script (see below) can start, stop and restart services.

        Many console scripts are documented here

        1 Reply Last reply Reply Quote 0
        • First post
          Last post