Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    RFE: DHCP Static Mappings copy to Failover IP

    Scheduled Pinned Locked Moved
    DHCP and DNS
    1
    1
    568
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • R
      rcpao
      last edited by

      This was asked of pfSense 1.2.1-RC, but was never answered:
      https://forum.pfsense.org/index.php?topic=12067.msg65890#msg65890

      I have tested with pfSense 1.2.3 and 2.1.3 and none of them copy the DHCP Static Mappings to the Failover IP.

      Firewall aliases, rules, etc. do copy as expected with CARP Settings -> XMLRPC sync.  It's called sync, but it's really just a single copy to a remote pfSense.  So if you modify a "downstream" remote pfSense, the changes will not sync "upstream."

      Update:
      I chained 5 pfSense instances: 1.2.3 VM 1 -> 1.2.3 VM 2 -> 2.1.3 net4801 3 -> 2.1.3 VM 4 -> 2.1.3 VM 5
      The VMs are all guests in ESXi.  net4801 is a Soekris box.
      Modifying a DHCP Static Map entry on 1 does not copy to 2 and System Log on 2 shows no attempts to connect from 1.
      Adding an entry in 2 does not copy to 3.
      Adding an entry in 3 does copy to 3; however, 3 did not copy to 4.

      From https://forum.pfsense.org/index.php?topic=50958.0 I infer there can only be a primary and a secondary based on skew > or < 20 and they appear to only point to each other as the Failover IP.

      I suppose CARP & DHCP failover is only for two players, no more, no less.

      pfSense 2.2.2 in ESXi with 5 static IPs via 4 CARP Virtual IPs on WAN to Pace 3801HGV (AT&T U-verse).

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.