4. Cannot continue to ping & access to CARP IP

Cannot continue to ping & access to CARP IP

  • D

    Dear all,

    I'm getting a problem. It is "Cannot continue to ping & access to CARP IP" . I have 2 PF boxes in the cluster topology. I have also 2 internet connections with 2 CARP IP separate.

    • The CARP IP on 1st line is working well
    • But the other one on 2nd line only work in 15 minutes if I perform to modify on CARP setting. After 15 minutes, it doesn't work again

    I would like to public some services (HTTP, SMTP, POP3, …) on this CARP IP to the internet.

    Could everybody please show me how to fix this problem? May I need to modify speed and duplex on the interface that has problem?

    Thank in advances !
    DQM

    0
  • S

    @DQM:

    I have 2 PF boxes in the cluster topology. I have also 2 internet connections with 2 CARP IP separate.

    You probably need to explain your setup a bit more. Maybe include a topology diagram?

    Do you have 2 physical lines with the same IP address/range? How does the routing work?
    From where to where are you testing?
    Do you have CARP working on the LAN?

    May I need to modify speed and duplex on the interface that has problem?

    You should test this before moving to CARP.

    0
  • D

    Thank you for your reply, SeventhSon !

    You probably need to explain your setup a bit more. Maybe include a topology diagram?

    Attached file is my current topology

    Do you have 2 physical lines with the same IP address/range? How does the routing work?

    I have 2 physical lines from 2 ISP separate, the first is lease line & the other is FTTH (see the topology for detailed information)

    From where to where are you testing?

    I have tested from internet

    Do you have CARP working on the LAN?

    The LAN CARP IP & the WAN CARP IP01 are working well. The WAN CARP IP02 only work in 15 minutes if I perfom modify some configuration (delete & re-create, change to another IP address in the same subnet, duplex, …)

    Did everyone get the same my problem? Pls give me your advice !

    Thanks in advance,
    DQM

    ![Cluster Topology.jpg_thumb](/public/imported_attachments/1/Cluster Topology.jpg_thumb)
    ![Cluster Topology.jpg](/public/imported_attachments/1/Cluster Topology.jpg)

    0
  • D

    Any solutions?

    Looking forward to hearing from you soon, Developer team and everybody.

    Best regards,
    DQM

    0
  • S

    is the WAN2 connected to the ISP equipment directly? they might be running some settings that aren't compatible with carp (proxy arp? multicast filtering?)

    can you try with just a (dumb)switch as WAN2?

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2019 Rubicon Communications, LLC | Privacy Policy