• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

HA SYNC Works only Once

Scheduled Pinned Locked Moved HA/CARP/VIPs
3 Posts 2 Posters 888 Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • D
    den2
    last edited by den2 Jan 10, 2022, 8:13 AM Jan 10, 2022, 8:10 AM

    I have two Pfsense firewalls setup in High Availability configuration mode. Everything seems to work, except that the synchronization works only the first time. Whenever I force Config sync through status οƒ  Filter reload the following error is received.
    β€œA communications error occurred while attempting to call XMLRPC method host_firmware_version”
    After further investigation I found out that: All the rules on the interface used for synchronization on the SECONDARY firewall are removed and are not replaced with the corresponding rules on the primary firewall. If I re-enter rules again (which allow synchronization to pass) the synchronization again works only once.

    It should be pointed out

    1. that the interfaces on both firewalls are setup exactly in the same order.
    2. Both Pfsense versions are 2.5.2.
    V 1 Reply Last reply Jan 10, 2022, 10:54 AM Reply Quote 0
    • V
      viragomann @den2
      last edited by Jan 10, 2022, 10:54 AM

      @den2
      Set the rule on the master in a way that it is also applicable on the secondary and allow XMLRPC sync.
      Additionally add a rule on the secondary again which allow the initial sync.

      E.g this is my sync rule set:
      36991e4e-6e37-4404-9fb9-f862b49f5b4e-grafik.png

      The PFSYNC net is a /30 and hence only includes the both HA nodes.

      D 1 Reply Last reply Jan 18, 2022, 4:12 PM Reply Quote 0
      • D
        den2 @viragomann
        last edited by Jan 18, 2022, 4:12 PM

        @viragomann

        Your suggested settings worked perfectly for my setup thankyouπŸ‘ πŸ‘ πŸ‘

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
          This community forum collects and processes your personal information.
          consent.not_received