Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    almost half percent of packet loss when pinging the carp vip of WAN interface

    Scheduled Pinned Locked Moved HA/CARP/VIPs
    6 Posts 2 Posters 1.5k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A
      amoschb
      last edited by

      any tips for me? thanks in advance!

      ping from 1.1.1.1 to 1.1.1.100, good
      ping from 1.1.1.10 to 1.1.1.100, bad
      ping from 2.2.2.1 to 1.1.1.100, good
      ping from 2.2.2.10 to 1.1.1.100, badf4907c12-0aae-4986-9b21-e24691fbbecc-image.png

      A 1 Reply Last reply Reply Quote 0
      • A
        amoschb @amoschb
        last edited by

        @amoschb efe8d26e-0e01-47c7-baa2-edd511c408ab-image.png

        A 1 Reply Last reply Reply Quote 0
        • A
          amoschb @amoschb
          last edited by

          @amoschb some findings, I changed Advertising frequency = 2, then 2 packets loss and 2 packets arrived, see below.ba8b2622-e8ea-4123-b74e-b3441f56de21-image.png

          T 1 Reply Last reply Reply Quote 0
          • T
            Thale @amoschb
            last edited by

            @amoschb You don't show it on your drawing - do you have an interface on both hosts dedicated to pfsync? If not, what interface(s) are you using to sync between the hosts?

            Is there anything in the logs indicating if router2 is trying to take over the CARP VIP address?

            Have you tried pinging other things, like router1's physical IP addresses, from router2? Do you drop packets with physical IPs, or only for the CARP IP?

            A 2 Replies Last reply Reply Quote 0
            • A
              amoschb @Thale
              last edited by

              @thale

              • no dedicated NIC for pfsync, actually there are 2 NICs for each pfsense, 1 is for WAN, 1 is for LAN (pfsync)

              • no any logs about CARP VIP taking over.

              • yes, i tried pinging from LAN to WAN, from Physical to Virtual back and forth. only PINGING CARP IP is abnormal.

              • packet captures show that multicast CARP message from pfsense master can be received on both of node.

              1 Reply Last reply Reply Quote 0
              • A
                amoschb @Thale
                last edited by

                @thale

                BTW:

                CARP IP on LAN interface works fine and no any issues.
                The packet loss issue is only happened on CARP IP on WAN interface.

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.