I am setting up a redundant OpenBSD firewall using CARP and pfsync. I am using
an OpenBSD 3.8 install from the CDs.
As part of the work being done, I am also configuring Solaris multipathing on
some servers inside the firewall. The way Solaris switches to a redundant
interface in case of failure seems to be by advertising the shared IP address on
the standby NIC when failing over.
When Solaris does its failover, I am seeing the following message in the
firewall's logs:
/bsd: arp: attempt to overwrite entry for x.x.x.x on carp1 by nn:nn:nn:nn:nn:nn
on fxp0
carp1 is my carp interface on the inside and fxp0 is the physical interface on
the inside. Basically this message is saying that the Solaris failover is
happening exactly as expected, but the firewall is rejecting the arp update
because it thinks carp1 and fxp0 are two completely different interfaces
although with carp, I don't think this should be the case.
I am new to OpenBSD so I'm hoping I am misunderstanding the situation or there
is a simple solution to this problem.
Any suggestions will be greatly appreciated.
- Aner
