On Wed, Feb 26, 2014 at 12:11 PM, Vick Khera <[email protected]> wrote: > Just turn off the carp on the master during your maintenance. The backup > should just take over for it. That's what I do. OpenVPN is pretty robust > when this happens and just renegotiates the connection.
Thanks for writing, Vick! The maintenance we're doing is more involved in that we are actually moving the second firewall device to a new set of switches, it's WAN interface first of all. We want to be sure we can connect to a VPN on the device that is not the virtual IP, so that we can ultimately keep the current configuration. I made a change to use TCP instead of UDP and all these problems go away! However, I would still like to understand how come the UDP setup does not work. _______________________________________________ List mailing list [email protected] http://lists.pfsense.org/mailman/listinfo/list
