Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    (Question) Basic carp config for redundancy

    Scheduled Pinned Locked Moved HA/CARP/VIPs
    3 Posts 2 Posters 2.5k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      the_lagarto
      last edited by

      Hi fellows, i'm quite noob to pfsense but now we're working on a project in school to setup a carp with 2x pfsense boxes and compare it (in relation to the down time before the slave or standby box gets the control) with a professional suite consisting in 2x cisco 2801 running HSRP. the thing is that we're just planning and still not brought any equipment (we got the ciscos, but not the pcs for pfsense) therefore some questions came and we're really wondering if what we are planning will in fact work; please consider the following:

      we have a little network (around 30 users) and we're planning to place 2 pfsense boxes in the border, however we are aiming for full redundancy and since we do not have the equiment yet we haven't tried. the question is: does carp do interface tracking? or will it only use the backup box if the sync link or the whole master box fails?

      let me put it in a more graphic way:

      If the fa0/3 link in the master box fails, will the slave automaticaly take the control? if the WAN fa0/1 link in the master box fails, will the slave automatically take the control? or, the slave will only take the control if the whole box goes down?

      Excusing my basic english skills, best regards!

      1 Reply Last reply Reply Quote 0
      • P
        podilarius
        last edited by

        I have done this test with pfSense and if:

        If LAN or WAN fails in the master, then the slave takes over.
        If the entire box dies, then the slave takes over.
        It does 2 WAN checks, pinging the gateway and link status. (so far as I can tell).

        I had fun doing the testing, please post your finds once you have been able to run this in your lab.

        1 Reply Last reply Reply Quote 0
        • T
          the_lagarto
          last edited by

          @podilarius:

          I have done this test with pfSense and if:

          If LAN or WAN fails in the master, then the slave takes over.
          If the entire box dies, then the slave takes over.
          It does 2 WAN checks, pinging the gateway and link status. (so far as I can tell).

          I had fun doing the testing, please post your finds once you have been able to run this in your lab.

          Awesome, that was the answer i was looking for :D! btw, if the switch linked to the master box fails, will the slave take the control too? (since the lan link should go down…)

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.