Hello List, I have a HA setup. Everything except state sync works fine. Configuration syncs correctly. Carp works correct, if I reboot the master, the slave turns Master and later turns back to Backup.
The only problem I have is that the state does not get synced (right now there where some 1100 states on one FW and 35 on the other). I see constant traffic in the range between 200 kbit to over 1 mbit on the sync interface. The sync interfaces is a dedicated interface. I can ping each server from the other (and xmlrpc config works). I see the pfsync traffic in tcpdump on both servers (lot of traffic from Master to Backup, some traffic from Backup to Master, this seems right). But it seems the states do not get applied. In another remote location we have 2.1.5 installed and it works correctly syncing the states. Is there anything I missed, I tripple checked the configuration, state sync is enabled on Backup, the IPs point to each other, on the backup nothing else but state sync is enabled. Outbound NAT seems to be correctly configured, but that should not be a problem for the state sync itself. I read the pfsense 21draft book and did not find anything related, also there is not much trouble shooting for state sync, most of it is carp related which works fine in my case. I am not sure how the state sync is happening, who or what is syncing? Should there be a deamon running and applying the states or is this a flag on an interface which PF should recognize behind the scenes? Thanks for help, Best Ray
_______________________________________________ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
