hi my setup are
openBSD 3.9-stable (GENERIC) #1: Fri May 12 09:47:15 CEST 2006 2 boxes with 4 3com 100mbit cards ( xl ) 2 interface per box run as bridge /etc >more bridgename.bridge0 add xl0 add xl1 blocknonip xl0 blocknonip xl1 stp xl0 stp xl1 timeout 60 priority 12288 maxaddr 1000 up ( the second box habe a diffrent priority ) 1 interface per box are for pfsync 1 interface for an private network ( just carp1 carpdev xl2 ip addr the interface have no ip ) the sysctl.conf looks like net.inet.ip.forwarding=1 net.inet.carp.allow=1 net.inet.carp.preempt=1 so i setup on the first interface ( wan ) my box ip address /etc >more hostname.xl0 inet .xxx.xxx..xxx.200 255.255.254.0 NONE group wan_if the second interface are just an up group dmz until to this setup works every thing fine. now i setup the carp interface carp0 inet xxx.xxx.xxx.202 255.255.254.0 NONE carpdev xl0 vhid 202 pass bridge1ha inet alias xxx.xxx.xxx.74 255.255.254.0 NONE now my problem the carp ip is from outside ( internet ) connectable but if i do an ping from inside ( dmz ) to the carp ip i got no response. what i see is at my tcpdump that the client host dident receive the arp addr from the carp interface . /etc >tcpdump -vvv -e -n -i xl0 host kikwit tcpdump: listening on xl0, link-type EN10MB 15:43:08.646358 0:50:4:33:b5:de ff:ff:ff:ff:ff:ff 0806 60: arp who-has xxx.xxx..xxx.74 tell xxx.xxx.xxx.187 15:43:09.601319 0:50:4:33:b5:de ff:ff:ff:ff:ff:ff 0806 60: arp who-has xxx.xxx.xxx.74 tell xxx.xxx.xxx.187 15:43:10.561210 0:50:4:33:b5:de ff:ff:ff:ff:ff:ff 0806 60: arp who-has xxx.xxx.xxx.74 tell xxx.xxx.xxx.187 a ping from the client to the box ip on xl0 works perfekt. so if i add by hand the mac address from the carp interface on the client box everything fine. any idea ? holger
