On 2009-11-30, stan <[email protected]> wrote:
> Sorry, I am still confused here. What I have is a pair of machines, each
> machine has 3 physical interfaces. On each machine one is for the "inside"
> network, one is for the "outside" network, and one is for phsync. The
> inside network is a single subnet, and does not need to see OSPF routing,
> as all of it's machines have a static default route to the CARP'd "inside"
> interface.
so use interface carpXX { passive } for this one...
> Both the "inside" and "outside" interfaces on both machines have
> an equiv. CARP interface. So, there are 3 outside IP addresses. the CARP
> address, and an individual address for the outside interface on each
> machine.
...and use the real interfaces for these, not the carp ones.
You shouldn't need carp on the outside interfaces.
> What can't happen is to have the machines both advertise their
> real physical interface addresses as duplicate routes to the inside
> network, right?
In 4.6 and earlier, only the carp master advertises the inside network.
In -current, both master and backup announce it, master with a low metric
so it's preferred, backup with a high metric. so the route isn't normally
used but it isn't totally lost when the routers failover.
