Filter Logs Firewall

Bastichou

Hi guys ;)
I set up a failover configuration on my pfsense infrastructure with CARP. It Works \o/

However, since this configuration pfsense, a lot of VRRP request is blocked ! So many that i can't see other error.
Can i remove this error from firewall's logs ? Or do something ?

Regards,

jimp

Fix your switches :-)

It'll only be logged if it sees traffic from "itself" on the wrong interface. Each interface should be isolated on its own switch/vlan/etc.

Bastichou

Thx for your answers.

I use VMware.
Sorry but I didn't understand the way to fix my trouble :s

jimp

Each segment should be on its own vswitch – no two vnics/ports from the same vm should be on the same switch.

For example on the "WAN" vswitch that should only contain the WAN ports on the firewalls (and your upstream connection). The LAN vswitch should only contain the LAN ports on the firewalls and the clients, and so on.

cmb

If you have multiple physical NICs on a single virtual switch, you'll need to set Net.ReversePathFwdCheckPromisc to fix VMware's looping multicast bug. That's likely the issue.
http://doc.pfsense.org/index.php/CARP_Configuration_Troubleshooting#VMware_ESX.2FESXi_Users

Bastichou

Thx everybody !
I will try it :)