CARP not working [Communications error & older version]



  • I've been attempting to get CARP to work on and off for about a week now using the tutorial available here, but I'm not getting past this problem.

    Initial setup:

    Installed with 08-01-2011 snapshot. Updated to most recent (Mar 13)
    Reset to factory defaults
    
    2 systems. 
    3 NIC's per system: LAN, WAN, CARP
    WAN: 130.x.x.x 
    LAN: 10.0.0.2 & 10.0.0.3 (static)
    CARP: 192.168.1.1 & 192.168.1.2 (static)
    
    Firewall rule on both systems: (only firewall rule on CARP interface). 
    Action: Pass
    Interface: CARP
    Protocoll: any
    Source: any
    Destination: any
    
    No virtual IP's defined
    

    Next, I try to set up the CARP syncing on the main system:

    
    CARP settings master: 
    Synchronize states: Enabled
    Sync interface: CARP
    pfsync Synchronixe Peer IP: 192.168.1.2
    Synchronize Config to IP: 192.168.1.2
    Password: <set>Synchronize virtual IPs: Enabled</set> 
    

    And on the slave:

    
    CARP settings slave:
    Synchronize states: Enabled
    Sync interface: CARP
    pfsync Synchronixe Peer IP: 192.168.1.1
    Synchronize Config to IP: <empty>Password: <empty>Synchronize virtual IPs: Enabled</empty></empty> 
    

    After these steps, the following appears in my log (after about a minute)

    
    A communications error occured while attempting XMLRPC sync with username admin https://192.168.1.2:443\. 
    New alert found: A communications error occured while attempting XMLRPC sync with username admin https://192.168.1.2:443\. 
    A communications error occured while attempting XMLRPC sync with username admin https://192.168.1.2:443\. 
    New alert found: A communications error occured while attempting XMLRPC sync with username admin https://192.168.1.2:443\. 
    The other member is on older configuration version of pfSense. Sync will not be done to prevent problems! 
    
    

    Adding a virtual IP is no use, it does not get replicated. Also tried it with WOL, enabled syncing and added a WOL entry. Does not get replicated either.

    Both systems are using https for the web interface
    The firewall on the slave system is showing communication

    PASS CARP   192.168.1.1:54569    192.168.1.2:443  TCP:S
    

    Both systems have configuration version 7.7

    Unfortunately, I cannot find any more debugging information. So my question is, does anyone know how to solve this and if not, how can I debug this?

    Thank you!


  • Rebel Alliance Developer Netgate

    Is your GUI actually running on port 443?

    Can you telnet to 192.168.1.2:443 from the master?


Log in to reply