CARP - VLAN VIPS showing master on both



  • I have two pfSense 2.01 boxes setup using CARP.  Everything is working properly - everything syncs properly, secondary interfaces startup when the primary goes down.  The only thing I am concerned about is that I have one LAN interface with 14 VLANS on it.  I have setup a VIP for each of them.  When I check the CARP status on both boxes they both show as master for all the VLAN VIPs.  The VIPs are setup as CARP.



  • That means the two can't see each other on the affected VLANs.



  • Thanks.  I had a problem with the trunk setup.



  • Hi !

    I have a weird problem with my CARP setup in the WAN interfaces. One of the VIP connected to a router1 works fine, pfsense1 showing as master and pfsense2 as backup, but the other wan VIP shows master in both machines (connected to router2). Both routers are from the same ISP, same model number, similar config (different IP for LAN and WAN  obviously).  This is the setup:

    PFsense1
    WAN1 192.168.9.13
    WAN2 192.168.8.13

    PFsense2
    WAN1 192.168.9.12
    WAN2 192.168.8.12

    CARP VIP
    WAN1 192.168.9.11
    WAN2 192.168.8.11

    This is the capture for the VIP working correctly (WAN1):

    Pfsense1

    09:36:46.057153 IP 192.168.9.13 > 224.0.0.18: VRRPv2, Advertisement, vrid 3, prio 100, authtype none, intvl 1s, length 36
    

    Pfsense2

    09:36:04.322183 IP 192.168.9.13 > 224.0.0.18: VRRPv2, Advertisement, vrid 3, prio 100, authtype none, intvl 1s, length 36
    

    Both pfsense listen the same advertisement.  And this is the capture for the broken WAN2 VIP  (both masters) :

    Pfsense1

    09:16:52.745483 IP 192.168.8.13 > 224.0.0.18: VRRPv2, Advertisement, vrid 5, prio 100, authtype none, intvl 1s, length 36
    

    Pfsense2

    09:35:04.911504 IP 192.168.8.12 > 224.0.0.18: VRRPv2, Advertisement, vrid 5, prio 200, authtype none, intvl 1s, length 36
    

    In this case it seems that both pfsenses are only listening their own advertisement!. Any idea why is this happening???, any info or idea will be appreciated.

    Thank you very much for your time.

    P.D: I have read http://forum.pfsense.org/index.php/topic,4936.0.html and there’s some hints pointing that it could be a broadcom NIC driver (both pfsense running on twins machines with broadcom NICs), or a problem with the router, but I couldn´t find any way to fix it. thnx.



  • @Dbv:

    Hi !

    I have a weird problem with my CARP setup in the WAN interfaces. One of the VIP connected to a router1 works fine, pfsense1 showing as master and pfsense2 as backup, but the other wan VIP shows master in both machines (connected to router2). Both routers are from the same ISP, same model number, similar config (different IP for LAN and WAN  obviously).  This is the setup:

    PFsense1
    WAN1 192.168.9.13
    WAN2 192.168.8.13

    PFsense2
    WAN1 192.168.9.12
    WAN2 192.168.8.12

    CARP VIP
    WAN1 192.168.9.11
    WAN2 192.168.8.11

    This is the capture for the VIP working correctly (WAN1):

    Pfsense1

    09:36:46.057153 IP 192.168.9.13 > 224.0.0.18: VRRPv2, Advertisement, vrid 3, prio 100, authtype none, intvl 1s, length 36
    

    Pfsense2

    09:36:04.322183 IP 192.168.9.13 > 224.0.0.18: VRRPv2, Advertisement, vrid 3, prio 100, authtype none, intvl 1s, length 36
    

    Both pfsense listen the same advertisement.  And this is the capture for the broken WAN2 VIP  (both masters) :

    Pfsense1

    09:16:52.745483 IP 192.168.8.13 > 224.0.0.18: VRRPv2, Advertisement, vrid 5, prio 100, authtype none, intvl 1s, length 36
    

    Pfsense2

    09:35:04.911504 IP 192.168.8.12 > 224.0.0.18: VRRPv2, Advertisement, vrid 5, prio 200, authtype none, intvl 1s, length 36
    

    In this case it seems that both pfsenses are only listening their own advertisement!. Any idea why is this happening???, any info or idea will be appreciated.

    Thank you very much for your time.

    P.D: I have read http://forum.pfsense.org/index.php/topic,4936.0.html and there’s some hints pointing that it could be a broadcom NIC driver (both pfsense running on twins machines with broadcom NICs), or a problem with the router, but I couldn´t find any way to fix it. thnx.

    I have that problem too but I don't have any Broadcom NICs so maybe that is not the problem.



  • Locking since this thread was resolved, please start a new thread instead of hijacking an old resolved one.


Log in to reply