I assume you did a pfsync (HA) interface on each firewall? If so did you connect this directly without going thru the switch? A direct connection is prefered for the sync interface. Also make sure that if you do direct connection then use a 6ft cable first to connect them. Some interfaces have issues if the cable is too short.
Ivo Tonev: When you bild redundant firewalls you also want redundant switches. This is the normal approach. On Wed, Jun 7, 2017, 15:52 Ivo Tonev <i...@tonev.pro.br> wrote: > Can tou send network diagram? Why 2 switches? How they are connected? > > There are any feature like Cisco's arp inspection? > > Em 7 de jun de 2017 10:45, "Daniel" <dan...@linux-nerd.de> escreveu: > > > Both are Physical. > > > > -- > > Grüsse > > > > Daniel > > > > Am 07.06.17, 14:34 schrieb "List im Auftrag von Ivo Tonev" < > > list-boun...@lists.pfsense.org im Auftrag von i...@tonev.pro.br>: > > > > Firewalls are virtual or physical servers? > > > > On Wed, Jun 7, 2017 at 9:12 AM, Daniel <dan...@linux-nerd.de> wrote: > > > > > Hi, > > > > > > Firewall on the Switch is the latest installed. > > > The Switch is just simple installed. No VLANS actually just IGMP > > disabled. > > > Carp has for sure 3 IPs. 2 Dedicated for each Server and one CARP > > (Virtual > > > Failover per Subnet) > > > > > > > > > -- > > > Grüsse > > > > > > Daniel > > > > > > Am 06.06.17, 00:04 schrieb "List im Auftrag von Ugo Bellavance" < > > > list-boun...@lists.pfsense.org im Auftrag von u...@lubik.ca>: > > > > > > On 2017-06-02 08:13 AM, Daniel wrote: > > > > Hi there, > > > > > > > > i run 2 pfsense Firewalls. I tried to use CARP but it will > > turn over > > > every 1-2-3 hours. > > > > Sometimes it is so fast the pf1 is master and pf2 has the > > routes. In > > > this case I need to reboot the both Servers. > > > > > > > > After I tried a lot id ont find any solutions. I took a > > different > > > brand (Sophos UTM) and here is the same behave. > > > > So I think this could be a network problem. > > > > > > > > Is there any important thinks which must be enabled or > > disabled in > > > the Switch? > > > > Or need the Switch some special configurations? > > > > > > > > When I use Linux with Bondig it also switch the NICs very > > often. > > > > > > > > We use 2 Switches from Netgear JGS524Ev2 > > > > > > > > Mayme someone has some experience with it? > > > > > > Can you give us more information? You do have 3 IP addresses > per > > > interface? How is your switch configured? Any tagged vLANs > > involved? Is > > > the switch's firmware up to date? > > > > > > _______________________________________________ > > > pfSense mailing list > > > https://lists.pfsense.org/mailman/listinfo/list > > > Support the project with Gold! https://pfsense.org/gold > > > > > > > > > _______________________________________________ > > > pfSense mailing list > > > https://lists.pfsense.org/mailman/listinfo/list > > > Support the project with Gold! https://pfsense.org/gold > > > > > > > > > > -- > > Ivo R. Tonev > > +55 61 98409-2642 > > i...@tonev.com.br > > _______________________________________________ > > pfSense mailing list > > https://lists.pfsense.org/mailman/listinfo/list > > Support the project with Gold! https://pfsense.org/gold > > > > _______________________________________________ > > pfSense mailing list > > https://lists.pfsense.org/mailman/listinfo/list > > Support the project with Gold! https://pfsense.org/gold > _______________________________________________ > pfSense mailing list > https://lists.pfsense.org/mailman/listinfo/list > Support the project with Gold! https://pfsense.org/gold _______________________________________________ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
