Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login
    Introducing Netgate Nexus: Multi-Instance Management at Your Fingertips.

    How to route to backup lan interface

    Scheduled Pinned Locked Moved HA/CARP/VIPs
    carprouting
    1 Posts 1 Posters 73 Views 1 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • O Offline
      opoplawski
      last edited by

      We have 3 offices with VPN connections between every pair. We use OSPF to configure routing. We are adding backup routers with a CARP configuration in each office. Each backup router has OSPF triggering on the CARP IP so it is not active. The VPN connections are also not active until the backup becomes primary.

      My question is how can I route from one office to another office's backup firewall's LAN interface?

      One thought has been to add a static route to the full internal IP address range (10.0.0.0/8) to the LAN CARP IP - and then perhaps have an OSPF filter to prevent that route from propagating - but I'm a little unsure of how to configure that.

      Any other suggestions?
      FWIW - I'm not syncing state because the firewalls are not identical hardware (at least at the moment)

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2026 Rubicon Communications LLC (Netgate). All rights reserved.