4. CARP IP getting into DAD issues on one node

CARP IP getting into DAD issues on one node

  • M

    Hi

    We have a 2-node-cluster of pfsense 2.2.4

    On one node, for one IPv6, we get a duplicate detection, and the IPv6 VIP is down:
    Aug 25 11:36:29 kernel: carp: VHID 231@vmx0_vlan1700: INIT -> BACKUP
    Aug 25 11:36:29 kernel: vmx0_vlan1700: manual intervention required
    Aug 25 11:36:29 kernel: vmx0_vlan1700: DAD complete for 2a02:418:300a:7::1 - duplicate found
    Aug 25 11:36:29 kernel: vmx0_vlan1700: DAD detected duplicate IPv6 address 2a02:xxxx:xxxx:7::1: NS in/out=0/1, NA in=1
    Aug 25 11:36:29 kernel: vmx0_vlan1700: promiscuous mode enabled

    If we failover to the second node, no duplicate seems to be detected, and it works as expected.

    Any ideas what to look out for?

    Thanks!
    Michel

    0
  • Rebel Alliance Developer Netgate

    Is that IP address only configured as a CARP VIP on both nodes?

    Is the CARP VIP status correct on both (Primary shows MASTER, secondary shows BACKUP)?

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy