Should it be possible to bind openvpn to a carp_vip group?

toasti

Hi,

my understanding was that this should be possible.

I have two machines with carp fail over and two Internet connections. I can bind openvpn (client or server) on either a group of wan interfaces or on one carp_vip but not to a group of carp_vip (No IPv4 Address to bind on). Now I'm not sure if that is a bug or simply not possible.

Right now I've bound the openvpn to the localhost and use nat over the group of carp_vip but the slave does try to connect the other site permanently (I can even see those on the server site) and it doesn't make any sense to do nat on the same machine.

viragomann

I don't know if that is possible.
However, you can bind openvpn to the LAN carp ip and forward it. This ip is available for both, master and slave.