On 12/23/2010 06:43 PM, Johan Beisser wrote:
On Thu, Dec 23, 2010 at 9:19 AM, Alessandro Baggi
<alessandro.ba...@gmail.com> wrote:
Hi list, I've tried to use the groups field for pfsync. I've changed in my
pf rules, the wan interface ext="xl0" with ext="egress", then when I try to
get a fault with firewall 1, firewall 2 become master, but all connections
die. In state tables of firewall 2 there are "syncronized" states for xl0,
but the "wan" interface is rl2. It's normal that all connections die, there
are not valid states for rl2. Then at this point the problem persist.
There is something that I've missed with ifconfig groups field? This is my
misconfiguration or "the use of groups field" is not a valid issue for this
problem?
Please post your pf.conf, ifconfig output and dmesg. There may be
another issue not addressed.
dmesg of Firewall 1
dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel Pentium III ("GenuineIntel" 686-class, 512KB L2 cache) 448 MHz
cpu0:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,SEP,MTRR,PGE,MCA,CMOV,PSE36,MMX,FXSR,SSE
real mem = 335114240 (319MB)
avail mem = 319672320 (304MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 02/10/99, BIOS32 rev. 0 @ 0xec700,
SMBIOS rev. 2.1 @ 0xf20ba (46 entries)
bios0: vendor Compaq version "686T2" date 02/10/99
bios0: Compaq Deskpro EP/SB Series
apm0 at bios0: Power Management spec V1.2 (BIOS managing devices)
apm0: AC on, battery charge unknown
acpi at bios0 function 0x0 not configured
pcibios0 at bios0: rev 2.1 @ 0xec700/0x3900
pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xf7360/128 (6 entries)
pcibios0: PCI Interrupt Router at 000:20:0 ("Intel 82371AB PIIX4 ISA"
rev 0x00)
pcibios0: PCI bus #1 is the last bus
bios0: ROM list: 0xc0000/0x8000 0xe0000/0x8000!
cpu0 at mainbus0: (uniprocessor)
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 0 function 0 "Intel 82443BX AGP" rev 0x03
intelagp0 at pchb0
agp0 at intelagp0: aperture at 0x44000000, size 0x4000000
ppb0 at pci0 dev 1 function 0 "Intel 82443BX AGP" rev 0x03
pci1 at ppb0 bus 1
"Matrox MGA G200 AGP" rev 0x03 at pci1 dev 0 function 0 not configured
vga1 at pci0 dev 13 function 0 "Matrox MGA G200 PCI" rev 0x01
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
xl0 at pci0 dev 14 function 0 "3Com 3c905B 100Base-TX" rev 0x30: irq 11,
address 00:10:5a:2e:0f:9e
exphy0 at xl0 phy 24: 3Com internal media interface
rl0 at pci0 dev 15 function 0 "Realtek 8139" rev 0x10: irq 11, address
00:1d:0f:c4:0c:1d
rlphy0 at rl0 phy 0: RTL internal PHY
rl1 at pci0 dev 16 function 0 "Realtek 8139" rev 0x10: irq 11, address
00:1d:0f:c4:17:cb
rlphy1 at rl1 phy 0: RTL internal PHY
piixpcib0 at pci0 dev 20 function 0 "Intel 82371AB PIIX4 ISA" rev 0x02
pciide0 at pci0 dev 20 function 1 "Intel 82371AB IDE" rev 0x01: DMA,
channel 0 wired to compatibility, channel 1 wired to compatibility
wd0 at pciide0 channel 0 drive 0: <Maxtor 6Y080L0>
wd0: 16-sector PIO, LBA, 78167MB, 160086528 sectors
atapiscsi0 at pciide0 channel 0 drive 1
scsibus0 at atapiscsi0: 2 targets
cd0 at scsibus0 targ 0 lun 0: <HL-DT-ST, DVD-ROM GDR8164B, 0L06> ATAPI
5/cdrom removable
wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2
cd0(pciide0:0:1): using PIO mode 4, Ultra-DMA mode 2
pciide0: channel 1 disabled (no drives)
uhci0 at pci0 dev 20 function 2 "Intel 82371AB USB" rev 0x01: irq 11
piixpm0 at pci0 dev 20 function 3 "Intel 82371AB Power" rev 0x02: SMI
iic0 at piixpm0
spdmem0 at iic0 addr 0x50: 128MB SDRAM non-parity PC133CL2
spdmem1 at iic0 addr 0x51: 128MB SDRAM non-parity PC100CL3
spdmem2 at iic0 addr 0x52: 64MB SDRAM non-parity PC66CL2
isa0 at piixpcib0
isadma0 at isa0
com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo
com1 at isa0 port 0x2f8/8 irq 3: ns16550a, 16 byte fifo
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0: console keyboard, using wsdisplay0
pcppi0 at isa0 port 0x61
spkr0 at pcppi0
lpt0 at isa0 port 0x378/4 irq 7
npx0 at isa0 port 0xf0/16: reported by CPUID; using exception 16
fdc0 at isa0 port 0x3f0/6 irq 6 drq 2
usb0 at uhci0: USB revision 1.0
uhub0 at usb0 "Intel UHCI root hub" rev 1.00/1.00 addr 1
biomask ff65 netmask ff65 ttymask ffff
mtrr: Pentium Pro MTRR support
uhidev0 at uhub0 port 2 configuration 1 interface 0 "C&C Technology Inc.
HID Keyboard/Mouse PS/2 to USB Translator" rev 2.00/1.64 addr 2
uhidev0: iclass 3/1
ukbd0 at uhidev0: 8 modifier keys, 6 key codes
wskbd1 at ukbd0 mux 1
wskbd1: connecting to wsdisplay0
uhidev1 at uhub0 port 2 configuration 1 interface 1 "C&C Technology Inc.
HID Keyboard/Mouse PS/2 to USB Translator" rev 2.00/1.64 addr 2
uhidev1: iclass 3/1, 3 report ids
ums0 at uhidev1 reportid 1: 5 buttons, Z dir
wsmouse0 at ums0 mux 0
uhid0 at uhidev1 reportid 2: input=1, output=0, feature=0
uhid1 at uhidev1 reportid 3: input=5, output=0, feature=0
softraid0 at root
root on wd0a swap on wd0b dump on wd0b
syncing disks... done
rebooting...
OpenBSD 4.8 (GENERIC) #136: Mon Aug 16 09:06:23 MDT 2010
dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel Pentium III ("GenuineIntel" 686-class, 512KB L2 cache) 448 MHz
cpu0:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,SEP,MTRR,PGE,MCA,CMOV,PSE36,MMX,FXSR,SSE
real mem = 335114240 (319MB)
avail mem = 319672320 (304MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 02/10/99, BIOS32 rev. 0 @ 0xec700,
SMBIOS rev. 2.1 @ 0xf20ba (46 entries)
bios0: vendor Compaq version "686T2" date 02/10/99
bios0: Compaq Deskpro EP/SB Series
apm0 at bios0: Power Management spec V1.2 (BIOS managing devices)
apm0: AC on, battery charge unknown
acpi at bios0 function 0x0 not configured
pcibios0 at bios0: rev 2.1 @ 0xec700/0x3900
pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xf7360/128 (6 entries)
pcibios0: PCI Interrupt Router at 000:20:0 ("Intel 82371AB PIIX4 ISA"
rev 0x00)
pcibios0: PCI bus #1 is the last bus
bios0: ROM list: 0xc0000/0x8000 0xe0000/0x8000!
cpu0 at mainbus0: (uniprocessor)
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 0 function 0 "Intel 82443BX AGP" rev 0x03
intelagp0 at pchb0
agp0 at intelagp0: aperture at 0x44000000, size 0x4000000
ppb0 at pci0 dev 1 function 0 "Intel 82443BX AGP" rev 0x03
pci1 at ppb0 bus 1
"Matrox MGA G200 AGP" rev 0x03 at pci1 dev 0 function 0 not configured
vga1 at pci0 dev 13 function 0 "Matrox MGA G200 PCI" rev 0x01
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
xl0 at pci0 dev 14 function 0 "3Com 3c905B 100Base-TX" rev 0x30: irq 11,
address 00:10:5a:2e:0f:9e
exphy0 at xl0 phy 24: 3Com internal media interface
rl0 at pci0 dev 15 function 0 "Realtek 8139" rev 0x10: irq 11, address
00:1d:0f:c4:0c:1d
rlphy0 at rl0 phy 0: RTL internal PHY
rl1 at pci0 dev 16 function 0 "Realtek 8139" rev 0x10: irq 11, address
00:1d:0f:c4:17:cb
rlphy1 at rl1 phy 0: RTL internal PHY
piixpcib0 at pci0 dev 20 function 0 "Intel 82371AB PIIX4 ISA" rev 0x02
pciide0 at pci0 dev 20 function 1 "Intel 82371AB IDE" rev 0x01: DMA,
channel 0 wired to compatibility, channel 1 wired to compatibility
wd0 at pciide0 channel 0 drive 0: <Maxtor 6Y080L0>
wd0: 16-sector PIO, LBA, 78167MB, 160086528 sectors
atapiscsi0 at pciide0 channel 0 drive 1
scsibus0 at atapiscsi0: 2 targets
cd0 at scsibus0 targ 0 lun 0: <HL-DT-ST, DVD-ROM GDR8164B, 0L06> ATAPI
5/cdrom removable
wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2
cd0(pciide0:0:1): using PIO mode 4, Ultra-DMA mode 2
pciide0: channel 1 disabled (no drives)
uhci0 at pci0 dev 20 function 2 "Intel 82371AB USB" rev 0x01: irq 11
piixpm0 at pci0 dev 20 function 3 "Intel 82371AB Power" rev 0x02: SMI
iic0 at piixpm0
spdmem0 at iic0 addr 0x50: 128MB SDRAM non-parity PC133CL2
spdmem1 at iic0 addr 0x51: 128MB SDRAM non-parity PC100CL3
spdmem2 at iic0 addr 0x52: 64MB SDRAM non-parity PC66CL2
isa0 at piixpcib0
isadma0 at isa0
com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo
com1 at isa0 port 0x2f8/8 irq 3: ns16550a, 16 byte fifo
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0: console keyboard, using wsdisplay0
pcppi0 at isa0 port 0x61
spkr0 at pcppi0
lpt0 at isa0 port 0x378/4 irq 7
npx0 at isa0 port 0xf0/16: reported by CPUID; using exception 16
fdc0 at isa0 port 0x3f0/6 irq 6 drq 2
usb0 at uhci0: USB revision 1.0
uhub0 at usb0 "Intel UHCI root hub" rev 1.00/1.00 addr 1
biomask ff65 netmask ff65 ttymask ffff
mtrr: Pentium Pro MTRR support
uhidev0 at uhub0 port 2 configuration 1 interface 0 "C&C Technology Inc.
HID Keyboard/Mouse PS/2 to USB Translator" rev 2.00/1.64 addr 2
uhidev0: iclass 3/1
ukbd0 at uhidev0: 8 modifier keys, 6 key codes
wskbd1 at ukbd0 mux 1
wskbd1: connecting to wsdisplay0
uhidev1 at uhub0 port 2 configuration 1 interface 1 "C&C Technology Inc.
HID Keyboard/Mouse PS/2 to USB Translator" rev 2.00/1.64 addr 2
uhidev1: iclass 3/1, 3 report ids
ums0 at uhidev1 reportid 1: 5 buttons, Z dir
wsmouse0 at ums0 mux 0
uhid0 at uhidev1 reportid 2: input=1, output=0, feature=0
uhid1 at uhidev1 reportid 3: input=5, output=0, feature=0
softraid0 at root
root on wd0a swap on wd0b dump on wd0b
ifconfig firewall 1:
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 33200
priority: 0
groups: lo
inet 127.0.0.1 netmask 0xff000000
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x5
xl0: flags=8b43<UP,BROADCAST,RUNNING,PROMISC,ALLMULTI,SIMPLEX,MULTICAST>
mtu 1500
lladdr 00:10:5a:2e:0f:9e
priority: 0
groups: egress
media: Ethernet autoselect (100baseTX full-duplex)
status: active
inet 192.168.1.84 netmask 0xffffff00 broadcast 192.168.1.255
inet6 fe80::210:5aff:fe2e:f9e%xl0 prefixlen 64 scopeid 0x1
rl0: flags=8b43<UP,BROADCAST,RUNNING,PROMISC,ALLMULTI,SIMPLEX,MULTICAST>
mtu 1500
lladdr 00:1d:0f:c4:0c:1d
priority: 0
media: Ethernet autoselect (100baseTX full-duplex)
status: active
inet 10.1.1.5 netmask 0xffff0000 broadcast 10.1.255.255
inet6 fe80::21d:fff:fec4:c1d%rl0 prefixlen 64 scopeid 0x2
rl1: flags=8b43<UP,BROADCAST,RUNNING,PROMISC,ALLMULTI,SIMPLEX,MULTICAST>
mtu 1500
lladdr 00:1d:0f:c4:17:cb
priority: 0
media: Ethernet autoselect (100baseTX full-duplex)
status: active
inet 172.16.2.4 netmask 0xffffff00 broadcast 172.16.2.255
inet6 fe80::21d:fff:fec4:17cb%rl1 prefixlen 64 scopeid 0x3
enc0: flags=0<>
priority: 0
groups: enc
status: active
pfsync0: flags=41<UP,RUNNING> mtu 1500
priority: 0
pfsync: syncdev: rl0 syncpeer: 10.1.1.6 maxupd: 128 defer: off
groups: carp pfsync
pflog0: flags=141<UP,RUNNING,PROMISC> mtu 33200
priority: 0
groups: pflog
carp0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
lladdr 00:00:5e:00:01:01
priority: 0
carp: MASTER carpdev xl0 vhid 1 advbase 1 advskew 0 carppeer
192.168.1.85
groups: carp
status: master
inet6 fe80::200:5eff:fe00:101%carp0 prefixlen 64 scopeid 0x6
inet 192.168.1.33 netmask 0xffffff00 broadcast 192.168.1.255
carp1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
lladdr 00:00:5e:00:01:02
priority: 0
carp: MASTER carpdev rl0 vhid 2 advbase 1 advskew 0 carppeer 10.1.1.6
groups: carp
status: master
inet 10.1.1.1 netmask 0xffff0000 broadcast 10.1.255.255
inet6 fe80::200:5eff:fe00:102%carp1 prefixlen 64 scopeid 0x7
carp2: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
lladdr 00:00:5e:00:01:03
priority: 0
carp: MASTER carpdev rl1 vhid 3 advbase 1 advskew 0 carppeer 172.16.2.5
groups: carp
status: master
inet 172.16.2.1 netmask 0xffffff00 broadcast 172.16.2.255
inet6 fe80::200:5eff:fe0
dmesg firewall 2
dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel Pentium II ("GenuineIntel" 686-class, 512KB L2 cache) 335 MHz
cpu0:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,SEP,MTRR,PGE,MCA,CMOV,PSE36,MMX,FXSR
real mem = 200830976 (191MB)
avail mem = 187625472 (178MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 11/06/98, BIOS32 rev. 0 @ 0xfbc00,
SMBIOS rev. 2.1 @ 0xf0800 (27 entries)
bios0: vendor Award Software International, Inc. version "4.51 PG" date
11/06/98
bios0: MICRO-STAR INTERNATIONAL CO., LTD MS-6147
apm0 at bios0: Power Management spec V1.2 (slowidle)
apm0: AC on, battery charge unknown
acpi at bios0 function 0x0 not configured
pcibios0 at bios0: rev 2.1 @ 0xf0000/0xc07c
pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfdef0/160 (8 entries)
pcibios0: PCI Exclusive IRQs: 5 10 11 12
pcibios0: PCI Interrupt Router at 000:07:0 ("Intel 82371SB ISA" rev 0x00)
pcibios0: PCI bus #1 is the last bus
bios0: ROM list: 0xc0000/0x8000
cpu0 at mainbus0: (uniprocessor)
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 0 function 0 "Intel 82443BX AGP" rev 0x03
intelagp0 at pchb0
agp0 at intelagp0: aperture at 0xe0000000, size 0x4000000
ppb0 at pci0 dev 1 function 0 "Intel 82443BX AGP" rev 0x03
pci1 at ppb0 bus 1
vga1 at pci1 dev 0 function 0 "ATI Rage Pro" rev 0x5c
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
piixpcib0 at pci0 dev 7 function 0 "Intel 82371AB PIIX4 ISA" rev 0x02
pciide0 at pci0 dev 7 function 1 "Intel 82371AB IDE" rev 0x01: DMA,
channel 0 wired to compatibility, channel 1 wired to compatibility
pciide0: channel 0 disabled (no drives)
wd0 at pciide0 channel 1 drive 0: <WDC WD300AB-00BVA0>
wd0: 16-sector PIO, LBA, 28629MB, 58633344 sectors
atapiscsi0 at pciide0 channel 1 drive 1
scsibus0 at atapiscsi0: 2 targets
cd0 at scsibus0 targ 0 lun 0: <HL-DT-ST, CD-RW GCE-8480B, 1.03> ATAPI
5/cdrom removable
wd0(pciide0:1:0): using PIO mode 4, Ultra-DMA mode 2
cd0(pciide0:1:1): using PIO mode 4, Ultra-DMA mode 2
uhci0 at pci0 dev 7 function 2 "Intel 82371AB USB" rev 0x01: irq 10
piixpm0 at pci0 dev 7 function 3 "Intel 82371AB Power" rev 0x02: polling
iic0 at piixpm0
spdmem0 at iic0 addr 0x50: 128MB SDRAM non-parity PC133CL3
spdmem1 at iic0 addr 0x51: 64MB SDRAM non-parity PC100CL2
rl0 at pci0 dev 14 function 0 "D-Link 530TX+" rev 0x10: irq 11, address
00:11:95:2a:b4:4d
rlphy0 at rl0 phy 0: RTL internal PHY
rl1 at pci0 dev 16 function 0 "Realtek 8139" rev 0x10: irq 12, address
00:1d:0f:c4:3f:8e
rlphy1 at rl1 phy 0: RTL internal PHY
rl2 at pci0 dev 18 function 0 "D-Link 530TX+" rev 0x10: irq 5, address
00:13:46:28:7f:db
rlphy2 at rl2 phy 0: RTL internal PHY
eap0 at pci0 dev 20 function 0 "Ensoniq AudioPCI97" rev 0x04: irq 10
ac97: codec id 0x54524103 (TriTech Microelectronics TR28023)
audio0 at eap0
midi0 at eap0: <AudioPCI MIDI UART>
isa0 at piixpcib0
isadma0 at isa0
com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0: console keyboard, using wsdisplay0
pcppi0 at isa0 port 0x61
spkr0 at pcppi0
lpt0 at isa0 port 0x378/4 irq 7
npx0 at isa0 port 0xf0/16: reported by CPUID; using exception 16
fdc0 at isa0 port 0x3f0/6 irq 6 drq 2
usb0 at uhci0: USB revision 1.0
uhub0 at usb0 "Intel UHCI root hub" rev 1.00/1.00 addr 1
biomask e74d netmask ff6d ttymask ffff
mtrr: Pentium Pro MTRR support
uhidev0 at uhub0 port 1 configuration 1 interface 0 "C&C Technology Inc.
HID Keyboard/Mouse PS/2 to USB Translator" rev 2.00/1.64 addr 2
uhidev0: iclass 3/1
ukbd0 at uhidev0: 8 modifier keys, 6 key codes
wskbd1 at ukbd0 mux 1
wskbd1: connecting to wsdisplay0
uhidev1 at uhub0 port 1 configuration 1 interface 1 "C&C Technology Inc.
HID Keyboard/Mouse PS/2 to USB Translator" rev 2.00/1.64 addr 2
uhidev1: iclass 3/1, 3 report ids
ums0 at uhidev1 reportid 1: 5 buttons, Z dir
wsmouse0 at ums0 mux 0
uhid0 at uhidev1 reportid 2: input=1, output=0, feature=0
uhid1 at uhidev1 reportid 3: input=5, output=0, feature=0
softraid0 at root
root on wd0a swap on wd0b dump on wd0b
ifconfig firewall 2:
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 33200
priority: 0
groups: lo
inet 127.0.0.1 netmask 0xff000000
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x5
rl0: flags=8b43<UP,BROADCAST,RUNNING,PROMISC,ALLMULTI,SIMPLEX,MULTICAST>
mtu 1500
lladdr 00:11:95:2a:b4:4d
priority: 0
media: Ethernet autoselect (100baseTX full-duplex)
status: active
inet 10.1.1.6 netmask 0xffff0000 broadcast 10.1.255.255
inet6 fe80::211:95ff:fe2a:b44d%rl0 prefixlen 64 scopeid 0x1
rl1: flags=8b43<UP,BROADCAST,RUNNING,PROMISC,ALLMULTI,SIMPLEX,MULTICAST>
mtu 1500
lladdr 00:1d:0f:c4:3f:8e
priority: 0
media: Ethernet autoselect (100baseTX full-duplex)
status: active
inet 172.16.2.5 netmask 0xffffff00 broadcast 172.16.2.255
inet6 fe80::21d:fff:fec4:3f8e%rl1 prefixlen 64 scopeid 0x2
rl2: flags=8b43<UP,BROADCAST,RUNNING,PROMISC,ALLMULTI,SIMPLEX,MULTICAST>
mtu 1500
lladdr 00:13:46:28:7f:db
priority: 0
groups: egress
media: Ethernet autoselect (100baseTX full-duplex)
status: active
inet 192.168.1.85 netmask 0xffffff00 broadcast 192.168.1.255
inet6 fe80::213:46ff:fe28:7fdb%rl2 prefixlen 64 scopeid 0x3
enc0: flags=0<>
priority: 0
groups: enc
status: active
pfsync0: flags=41<UP,RUNNING> mtu 1500
priority: 0
pfsync: syncdev: rl0 syncpeer: 10.1.1.5 maxupd: 128 defer: off
groups: carp pfsync
pflog0: flags=141<UP,RUNNING,PROMISC> mtu 33200
priority: 0
groups: pflog
carp0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
lladdr 00:00:5e:00:01:01
priority: 0
carp: BACKUP carpdev rl2 vhid 1 advbase 1 advskew 50 carppeer
192.168.1.84
groups: carp
status: backup
inet 192.168.1.33 netmask 0xffffff00 broadcast 192.168.1.255
inet6 fe80::200:5eff:fe00:101%carp0 prefixlen 64 scopeid 0x6
carp1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
lladdr 00:00:5e:00:01:02
priority: 0
carp: BACKUP carpdev rl0 vhid 2 advbase 1 advskew 50 carppeer 10.1.1.5
groups: carp
status: backup
inet 10.1.1.1 netmask 0xffff0000 broadcast 10.1.255.255
inet6 fe80::200:5eff:fe00:102%carp1 prefixlen 64 scopeid 0x7
carp2: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
lladdr 00:00:5e:00:01:03
priority: 0
carp: BACKUP carpdev rl1 vhid 3 advbase 1 advskew 50 carppeer
172.16.2.4
groups: carp
status: backup
inet 172.16.2.1 netmask 0xffffff00 broadcast 172.16.1.255
inet6 fe80::200:5eff:fe00:103%carp2 prefixlen 64 scopeid 0x8
on firewall 1, I've set net.inet.carp.preempt=1
with tcpdump I see the pfsync packet and carp packet going from fw1 to fw2
if I try to set down for example rl0, fw2 become master, but all
connection die.
If I run pfctl -s states,I get on firewall 2, states for xl0, rl0 and
rl1. At this point, on firewall2 there's no interface xl0.
In past I've runned a similar configuration with same NIC name, without
any problem.
thanks in advance.
