Jim Thompson schreef op 8-1-2015 om 16:52: >> On Jan 8, 2015, at 9:23 AM, Seth Mos <[email protected]> wrote: >> >> You do not want to use CARP with with BGP in any situation. Each node >> needs it's own session with the remote BGP peer. You need to use iBGP >> between the nodes instead. > > We run a pair of c2758s behind each link and CARP between these, announcing > the routes out via BGP. (Technically this occurs on a different pair (R200) > boxes that play the role of router (one per link).
To clarify this a bit better. You speak BGP to your ISP from each pfSense node and generally use CARP as the router address on the internal side. You still need to exchange routes between both pfSense nodes. The moment CARP fails over you drop your BGP session anyhow, so both pfSense nodes need the routing tables (Unless you use default only). Regards, Seth _______________________________________________ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
