IPSEC settings create fine, does not delete from carp member.

  • I am not sure if this was a fluke or by design..but wanted to post.

    I have a 2 node carp cluster that when the IPSEC vpn was created everything was fine.
    When i deleted the IPSEC vpn from the master, it never deleted from the carp member.

    I could not test anymore on the device, but wanted to put this out there just in case someone else has seen this.

  • After  more testing, Carp members get IPSEC settings
    If i turn off ipec from master, ipsec stays active on carp member.

    Is this by design?
    What if you need the tunnel off and disable ipsec on the master and then a carp member picks up due to fail over?

  • The last IPsec config, if deleted, would not be removed from the secondary in 2.0. That's fixed in 2.0.1.