I've got my two firewalls setup and I think stuff is mostly working. I'm curious about the firewall rule that the cluster tutorial talks about. Is it still required to make the pfsync interface (opt4 on each firewall in my case) able to pass all traffic? I really don't want that interface have access to all the other interface networks so is it ok if I set the source and destination to "OPT4 net" ? .. what other stuff do I have to do to make the firewalls sync? Can they sync new carp entries?
do the synchronize ip and remote system passwords have to be entered on both machines and correspond to one another or is it only entered on one machine? -Matt
