Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Trying to config same subnet on two physical ports per firewall in HA

    HA/CARP/VIPs
    1
    1
    413
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • SipriusPT
      SipriusPT last edited by SipriusPT

      Hello everyone,

      I am trying to config a subnet to use two interfaces in on firewall, in this case there is a switch integrated, in order if one fails, the other maintain the network.

      This is the network layout that I am trying to achieve:

      LAN_interface_HA.drawio (2).png

      The problem is that I have two firewalls sync, and if I config a second port to use the same subnet, in both, when connect it to LAN SWITCH B, that would freak out both firewalls, having loss of connections with WAN, and in both log consoles, I see lots of blocks for that, even when disconnecting the second port in each firewall. Its like there is a loop in those interfaces.

      So my question is, to achieve this, I am obligated to use a different subnet to be used in LAN SWITCH B, without any firewall restriction between both subnets? or I can use the same subnet? if yes how can I achieve this?

      If you need more info just let me know.

      Thanks in advance!

      1xSG-4860-1U
      1xSG-3100
      2xpfSense Virtual Machines

      1 Reply Last reply Reply Quote 0
      • First post
        Last post