On 03/04/2012 10:32 AM, Camiel Dobbelaar wrote:
On 3-4-2012 11:13, Ian Chard wrote:
I have an OpenBSD box acting as a NATting firewall. It has 59 CARP
interfaces defined, all identical apart from the IP address and vhid. At
the moment there is no failover pair, so all the interfaces are in
MASTER mode.
Every so often, one of these interfaces will suddenly stop answering ARP
requests. With tcpdump I can see the ARP requests coming in, but they
are never answered. ifconfig output for the interface is no different
to any of the other CARP instances; most notably, it is still in MASTER
mode. I have net.inet.carp.log set to 7, but nothing is logged when
this happens: no state changes, no other messages.
Recovery is simple: I just 'ifconfig carpxx down; ifconfig carpxx up'.
The interface recovers in a second or two.
I had this problem with 4.9-stable, and today I migrated the config to a
fresh 5.0-stable installation with the same results.
Any help much appreciated!
I assume all your carp interfaces have the same carpdev (physical
interface) ?
All but one, yes.
I suspect you may run into this limit (in sys/netinet):
if_ether.c: IFQ_SET_MAXLEN(&arpintrq, 50); /* XXX hate
magic numbers */
Can you raise that number to 100 and compile a new kernel?
I'll try that -- thanks.
Alternatively, you can combine IP addresses (using "alias") on the carp
interfaces so you have less of those.
Now why didn't I think of that :) Amazing what a fresh pair of eyes can do.
Many thanks again
- Ian
--
Ian Chard, Systems Architect | E: [email protected]
Bodleian Libraries | T: 80587 / (01865) 280587
University of Oxford | F: (01865) 242287
