Dual stack both nodes master firewall rules fail to load



  • Dual stack both nodes master firewall rules fail to load

    Hello,

    I have been trying to setup a 2 node firewall with dual stack (IPv4 + IPv6).
    The CARP configuration works fine with just IPv4 enabled.
    IPv6 works fine in single node mode.
    When i add the IPv6 CARP configuration, the firewall fails to load the rules.
    The following is logged into the system log.

    –--------------------
    There were error(s) loading the rules: no IP address found for 2001:610:blah::254...0/64/tmp/rules.debug:59L could not parse host specification no IP address found for 2001:610:blah::254...0/64 /tmp/rules.debug:60: could not parse host specification pfctl: Syntax error in config file: pf rules not loaded - The line in question reads[610]:
    –--------------------

    We have 1 nic for LAN, 1 nic for WAN and 1 nic for PFSYNC on each node.
    The LAN and WAN have IPv4 and IPv6 configured.
    The sync interface only uses IPv4.

    This entire configuration worked last week, but since one of the updates earlier this week, i can't seem to fix the problem.
    Do you have any advise how to solve this?
    Thank you.



  • Since this thread isn't getting any responses. I would like to ask if anyone has a working dual stack fail-over pfsense configuration working?
    If so, could you please give a response here?
    Thank you.



  • This morning i updated to version 2.1-BETA0 (amd64) built on Thu Nov 8 16:38:54 EST 2012 and the problems are gone.
    CARP is working now with dual stack (IPv4 and IPv6 are both working).
    There are no more errors coming in the log files now.
    Thank you for fixing this.


Log in to reply