Hi,
check your outbound nat, you have manual outbound nat configured (AON?).
If so, a source of any may introduce troubles with CARP, at least it did at my
location, I changed the outbound NAT rules from source any to our Internal LANS
(one LAN, one WLAN), just to be sure I added a third rule per WAN interface as
well with source 127.0.0.0/8, which I am not sure if it needs to be.
So in my case, I have for each WAN 3 outbound NAT rules for each LAN
(192.168.0.0/22, 10.100.202.0/24, 127.0.0.0/8) and it helped me with CARP.
Hope it helps you to,
best regards
Raimund
----- Original Message -----
From: "Stefan Bauer" <stefan.ba...@cubewerk.de>
To: list@lists.pfsense.org
Sent: Wednesday, September 21, 2011 12:34:31 PM
Subject: [pfSense] two masters after master return on wan interface
Hi folks,
i have a pfsense 2.0-RELEASE (i386) setup with 2 carp interfaces.
vip1 192.168.10.100
vip20 178.15.116.170
Failover is working fine. After master returns, the backup claims to be
master for our wan interfaces - so we have two masters for wan :/
Lan is given back to master correctly.
Is this a known bug? We tried also to connect the wan interfaces with a
crossover-wire to be sure, our switch is not doing nasty things.
If i disable / enable carp on the "backup device" it moves correctly into
the backup-state.
master:
xl0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
options=80009<RXCSUM,VLAN_MTU,LINKSTATE>
ether 00:0a:5e:5e:9d:b2
inet 10.10.10.101 netmask 0xffffff00 broadcast 10.10.10.255
inet6 fe80::20a:5eff:fe5e:9db2%xl0 prefixlen 64 scopeid 0x1
nd6 options=3<PERFORMNUD,ACCEPT_RTADV>
media: Ethernet autoselect (100baseTX <full-duplex>)
status: active
fxp0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> metric 0
mtu 1500
options=209b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM,WOL_MAGIC>
ether 00:0c:f1:ed:c9:59
inet 192.168.10.101 netmask 0xffffff00 broadcast 192.168.10.255
inet6 fe80::20c:f1ff:feed:c959%fxp0 prefixlen 64 scopeid 0x2
nd6 options=3<PERFORMNUD,ACCEPT_RTADV>
media: Ethernet autoselect (100baseTX <full-duplex>)
status: active
fxp1: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> metric 0
mtu 1500
options=209b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM,WOL_MAGIC>
ether 00:0c:f1:ed:c9:5c
inet6 fe80::20c:f1ff:feed:c95c%fxp1 prefixlen 64 scopeid 0x3
inet 178.15.116.171 netmask 0xfffffff8 broadcast 178.15.116.175
nd6 options=3<PERFORMNUD,ACCEPT_RTADV>
media: Ethernet autoselect (100baseTX <full-duplex>)
status: active
plip0: flags=8810<POINTOPOINT,SIMPLEX,MULTICAST> metric 0 mtu 1500
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> metric 0 mtu 16384
options=3<RXCSUM,TXCSUM>
inet 127.0.0.1 netmask 0xff000000
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x5
nd6 options=3<PERFORMNUD,ACCEPT_RTADV>
pfsync0: flags=41<UP,RUNNING> metric 0 mtu 1460
pfsync: syncdev: xl0 syncpeer: 10.10.10.102 maxupd: 128 syncok: 1
pflog0: flags=100<PROMISC> metric 0 mtu 33200
enc0: flags=0<> metric 0 mtu 1536
vip1: flags=49<UP,LOOPBACK,RUNNING> metric 0 mtu 1500
inet 192.168.10.100 netmask 0xffffff00
carp: MASTER vhid 1 advbase 1 advskew 0
vip20: flags=49<UP,LOOPBACK,RUNNING> metric 0 mtu 1500
inet 178.15.116.170 netmask 0xfffffff8
carp: MASTER vhid 20 advbase 1 advskew 0
slave:
em0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> metric 0
mtu 1500
options=209b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM,WOL_MAGIC>
ether 00:0a:e4:0d:bb:ee
inet 192.168.10.102 netmask 0xffffff00 broadcast 192.168.10.255
inet6 fe80::20a:e4ff:fe0d:bbee%em0 prefixlen 64 scopeid 0x1
nd6 options=3<PERFORMNUD,ACCEPT_RTADV>
media: Ethernet autoselect (1000baseT <full-duplex>)
status: active
fxp0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> metric 0
mtu 1500
options=209b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM,WOL_MAGIC>
ether 00:0a:e4:0d:bb:ef
inet6 fe80::20a:e4ff:fe0d:bbef%fxp0 prefixlen 64 scopeid 0x2
inet 178.15.116.172 netmask 0xfffffff8 broadcast 178.15.116.175
nd6 options=3<PERFORMNUD,ACCEPT_RTADV>
media: Ethernet autoselect (100baseTX <full-duplex>)
status: active
xl0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
options=80009<RXCSUM,VLAN_MTU,LINKSTATE>
ether 00:0a:5e:40:73:23
inet 10.10.10.102 netmask 0xffffff00 broadcast 10.10.10.255
inet6 fe80::20a:5eff:fe40:7323%xl0 prefixlen 64 scopeid 0x3
nd6 options=3<PERFORMNUD,ACCEPT_RTADV>
media: Ethernet autoselect (100baseTX <full-duplex>)
status: active
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> metric 0 mtu 16384
options=3<RXCSUM,TXCSUM>
inet 127.0.0.1 netmask 0xff000000
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x4
nd6 options=3<PERFORMNUD,ACCEPT_RTADV>
pfsync0: flags=41<UP,RUNNING> metric 0 mtu 1460
pfsync: syncdev: xl0 syncpeer: 10.10.10.101 maxupd: 128 syncok: 1
pflog0: flags=100<PROMISC> metric 0 mtu 33200
enc0: flags=0<> metric 0 mtu 1536
vip1: flags=49<UP,LOOPBACK,RUNNING> metric 0 mtu 1500
inet 192.168.10.100 netmask 0xffffff00
carp: BACKUP vhid 1 advbase 1 advskew 100
vip20: flags=49<UP,LOOPBACK,RUNNING> metric 0 mtu 1500
inet 178.15.116.170 netmask 0xfffffff8
carp: BACKUP vhid 20 advbase 1 advskew 100
Help is greatly appreciated.
Stefan
_______________________________________________
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list
_______________________________________________
List mailing list
List@lists.pfsense.org
http://lists.pfsense.org/mailman/listinfo/list
