They share a virtual IP, and the interfaces IP's are different, but all
in the same subnet. The default gateway of your clients is the virtual
IP. Depending on witch box is the master it takes over the virtual IP.
There is also a dedicated sync interface that will keep everything in
check and updated.
I have a CARP setup running. Multiple interfaces,DHCP,IPsec, ect all
fail over within seconds.
In my case i used 3 IP's for each carp interface i wanted to use. (One
Virtual, Two for each interface on the Master and Backup) Not sure if
you can use less.
Adam
On 1/4/2013 1:15 PM, Joseph Hardeman wrote:
Hi Everyone,
I am curious to know if it is possible to have a pair of pfSense
servers swap IP's on an interface or vlan interface when they
failover, just like the Cisco ASA can. So on a pair of failover ASA's
I only need to use either 1 or 2 IP's (if I want to) to handle moving
the gateway IP between the pair, including setting the mac address. I
have been playing with pfSense to see if I set CARP to try to do the
same thing, but so far I haven't seen a way to do it or I am just
missing it.
It seems like CARP acts more like HSRP in the fact it needs 1 IP set
on the interface of each pair and then will only move any IP I set as
a CARP IP. Which is they way I understand HSRP works. Now with VRRP
I only need 2 IP's total to handle failover and with the ASA failover
I can reduce it down to a single IP.
Any thoughts or suggestions on if pfSense can do this or how I would
make it do it?
I am curious to see if it can be done.
Thanks everyone
Joe
_______________________________________________
List mailing list
[email protected]
http://lists.pfsense.org/mailman/listinfo/list
--
Adam M Piasecki
MidAtlanticBroadband
Office: 410-727-8250 x 123
Cell: 940-224-4837
Fax: 410-727-8245
_______________________________________________
List mailing list
[email protected]
http://lists.pfsense.org/mailman/listinfo/list
