Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    NTP broken in CARP

    HA/CARP/VIPs
    1
    1
    765
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • ?
      A Former User
      last edited by

      When setting up a pair of CARP boxes, you need an outbound NAT rule to tell the second box it should use its WAN interface for the outgoing connection to other NTP servers.

      Without the rule, the second box can't synchronize to outside servers, since it use a different IP for outgoing NTP connections (on mine, one of the CARP addresses), which results in packets from the remote servers hitting the primary box and getting dropped.

      I propose that an outbound hidden rule is added as default for all installations, since it can't be bad to be safer than sorry.

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.