HA not switching for all interfaces at the same time to other node
-
I have a simple a simple 2 node LAN/WAN setup, but it looks like having the CARP VIP/being master on node1 or node2 is on the interface level and not global.
If I unplugged the WAN cable from node1 I can see the CARP master role for WAN moving from node1 to node2. However, node1 still is master on the LAN, responding on the LAN CARP VIP.
To me this split situations seems weird en incorrect, causing the LAN<->WAN traffic to halt. Shouldn’t all interfaces move at same time from master to slave and vice versa? Can’t see how this should work if that’s not the case.What am I missing here? Did I just misconfigure something?
-
@wickeren can you share how you configured the HA, did you follow the "High Availability Configuration Example"? And what pfSense version are you using?
-
yes did follow https://docs.netgate.com/pfsense/en/latest/recipes/high-availability.html.
Pfsense 2.7.2 involved here. -
@wickeren can share pictures of the CARP interface configs, the sync interface and the relevant firewall rules?
