HA SYNC XMLRPC SYC virtual ips alias sync

mattww

Hi,

From the information supplied here:
https://docs.netgate.com/pfsense/en/latest/firewall/virtual-ip-address-comparison.html

under ip alias:

Can be added to localhost for binding services in routed subnets. IP Alias VIPs bound to localhost will synchronize via XMLRPC

Why would pfsense choose to sync ip aliases defined on a loopback interface?
Aren't these suppose to be kept unique across devices.

Currently I had two vip alias /32's configured for daemon binding of services and use for router id's for BGP / OSPF.

Now when I enable the sync the vip alias on firewall gets synced to the other firewall removing the other alias configured.

I find this confusing why it would sync an ip alias on loopback interfaces as In my sense of things these should be unique across devices.

I was using the alias not only for binding daemons but also use as main mgmt ip for the netgate devices.

Is there somehow a way to make an exception for aliases not to sync.

I only basically need the option to have the CARP VIPS and perhaps HA proxy information synced but not loopback interface aliases.

Or should I just not use the virtual ip sync option at all and maintain them separately per device.
Because of the sync it broke my setup and it's confusing to get the sync removed as soon as I remove the option and reconfigure the ip alias it still seems to be synced somehow.

Thanks

mattww

So from an old ticket:

https://redmine.pfsense.org/issues/7010?tab=notes

I'm confused why aliases on loopback interfaces would need a sync for HA cluster