HA - can i upgrade one pfsense and keep sync ?
-
Hello,
I have two pfsense 2.1.5 in HA sync (virtualized)
I would like to reinstall one pfsense physically in the same version but i get panic in boot of the LiveCD and i spent several hours to get a solution but nothing, so i tested the latest version (2.3) and i can boot on the install pfsense. By the way, do you have a tip for me ? My server is a Dell R320 and my install device is USB (i choose option 3 - boot pfsense using USB) and i get : panic ifmedia_set - kdb enter panic and the system is frozen.So my question, can i upgrade one pfsense from 2.1.5 to 2.3 and keep sync the primary pfsense with the slave with different versions ?
The objective is to upgrade one pfsense, test the latest version and without virtualization, check if all is OK and upgrade the other one.
Thanks for your answers.
-
Nope. 2.3 will not sync with older versions.
-
Just plan it for a time when you won't have many/any changes on the firewall. If you have to you can always just apply them on both during the testing phase. This is what I do. I still manually disable sync by removing the secondary IP from the sync to secondary setting on the primary just to be safe and minimize error logging but leave pfsync syncing enabled for the state tables. I am also in the process of upgrading an HA pair from 2.1.5 to 2.3.
-
Thanks !