Carp issues with one interface

sullrich

Check that the vhids are the same on the backup and master for the CARP'd ip's.  Also verify that pfsync is working, you can ping the dedicated interface that hosts pfsync, etc.

Oh, I notice you don't have a dedicated pfsync interface?    Check out the tutorial, you are not doing this like we suggest.

egarnel

vhids match.    I ran thru the tutorial.  I noticed on slide 18 under CARP settings that it mentions enabling preemption.  I do not have a check box for preemption or load balancing.  I am running RC2h on the primary & RC2 on the secondary.

The interface labeled carp is the sync interface on both servers

sullrich

pfsync0: flags=41 <up,running>mtu 1348
        pfsync: syncdev: lo0 maxupd: 128

You have not set your pfsync interface in the carp settings area.</up,running>

egarnel

hmmmm.  The secondary lan interface goes into backup for a few seconds then reverts back to master. thanks for all your help in this matter

Primary
bge1: flags=8943 <up,broadcast,running,promisc,simplex,multicast>mtu 1500
        options=1b <rxcsum,txcsum,vlan_mtu,vlan_hwtagging>inet 192.168.4.1 netmask 0xffffff00 broadcast 192.168.4.255
        inet6 fe80::216:36ff:fe13:a609%bge1 prefixlen 64 scopeid 0x4
        ether 00:16:36:13:a6:09
        media: Ethernet autoselect (1000baseTX <full-duplex>)
        status: active

pfsync0: flags=41 <up,running>mtu 1348
        pfsync: syncdev: fxp0 maxupd: 128</up,running>
carp0: flags=49 <up,loopback,running>mtu 1500
        inet 192.168.4.3 netmask 0xffffff00
        carp: MASTER vhid 1 advbase 1 advskew 0
carp1: flags=49 <up,loopback,running>mtu 1500
        inet bbb.yyy.xxx.25 netmask 0xffffff00
        carp: MASTER vhid 2 advbase 1 advskew 0
carp2: flags=49 <up,loopback,running>mtu 1500
        inet 192.168.20.4 netmask 0xffffff00
        carp: MASTER vhid 3 advbase 1 advskew 0

Secondary
bge1: flags=8943 <up,broadcast,running,promisc,simplex,multicast>mtu 1500
        options=1b <rxcsum,txcsum,vlan_mtu,vlan_hwtagging>inet 192.168.4.1 netmask 0xffffff00 broadcast 192.168.4.255
        inet6 fe80::216:36ff:fe13:a609%bge1 prefixlen 64 scopeid 0x4
        ether 00:16:36:13:a6:09
        media: Ethernet autoselect (1000baseTX <full-duplex>)
        status: active
pfsync0: flags=41 <up,running>mtu 1348
        pfsync: syncdev: bge1 maxupd: 128</up,running>
lo0: flags=8049 <up,loopback,running,multicast>mtu 16384
        inet 127.0.0.1 netmask 0xff000000
        inet6 ::1 prefixlen 128
        inet6 fe80::1%lo0 prefixlen 64 scopeid 0x6
pflog0: flags=100 <promisc>mtu 33208
carp0: flags=49 <up,loopback,running>mtu 1500
        inet 192.168.4.3 netmask 0xffffff00
        carp: BACKUP vhid 1 advbase 1 advskew 100
carp1: flags=49 <up,loopback,running>mtu 1500
        inet bbb.xxx.yyy.25 netmask 0xffffff00
        carp: BACKUP vhid 2 advbase 1 advskew 100
carp2: flags=49 <up,loopback,running>mtu 1500
        inet 192.168.20.4 netmask 0xffffff00
        carp: MASTER vhid 3 advbase 1 advskew 254</up,loopback,running></up,loopback,running></up,loopback,running></promisc></up,loopback,running,multicast></full-duplex></rxcsum,txcsum,vlan_mtu,vlan_hwtagging></up,broadcast,running,promisc,simplex,multicast></up,loopback,running></up,loopback,running></up,loopback,running></full-duplex></rxcsum,txcsum,vlan_mtu,vlan_hwtagging></up,broadcast,running,promisc,simplex,multicast>

sullrich

on bge1, both machines need a unique ip in the  same subnet.

egarnel

my bad… I copied & pasted the same info twice.
Here is the correct info for the primary carp interface:

fxp0: flags=8943 <up,broadcast,running,promisc,simplex,multicast>mtu 1500
        options=b <rxcsum,txcsum,vlan_mtu>inet 192.168.4.2 netmask 0xffffff00 broadcast 192.168.4.255
        inet6 fe80::202:b3ff:febb:9776%fxp0 prefixlen 64 scopeid 0x4
        ether 00:02:b3:bb:97:76
        media: Ethernet autoselect (100baseTX <full-duplex>)
        status: active</full-duplex></rxcsum,txcsum,vlan_mtu></up,broadcast,running,promisc,simplex,multicast>

sullrich

Then I am not sure.  It looks okay to me.  Double check your switch ports, vlans, etc.

Also refer to the archive, a lot of people have asked a LOT of questions about CARP.

egarnel

thanks for your help.

Just for grins, I am going to try to swap out the nic on the primary server. It is an intel 10/100 pro pci  plugged into a PCI-X slot. It should work fine and appears to be, but I have a PCI-X nic card available that came from another dell poweredge server that would be consistent with the other nics and also provide 1000 Mbs.

Numbski

Couple of thoughts from one of the people that has asked a LOT of questions. :)

1.  Have you looked at the wiki?
2.  VHID's need to be unique not just for that set of carp interfaces, but for anything else that might be on that same network segment, as CARP is broadcast, not a peer-to-peer technology.
3.  Triple check that you are using the correct subnet mask for your CARP IP's, and not /32.
4.  Make sure that your CARP interface has an allow any any statement on it, just to be safe, and that the systems are connected by a crossover cable for additional security.
5.  If you must do carp without a dedicated interface, make sure you have an allow statement for CARP and pfSync from the opposing system, and block traffic from any other hosts.

That's about all I can think of.

egarnel

I have done all that you mention.  I am using a dedicated interface for carp.  Both carp interfaces are connected via the same vlan and xmlrpc updates are successful.  I have not had the chance to swap out the nic for a pci-x nic yet, but I will start with a fresh install when I do. I will have to wait until the next maintenance window