Hi, I have some problems with carp and vlans I think. I have four physical interfaces in my two firewalls, one for pfsync, one to the Internet, DMZ and LAN. At the LAN interface seven VLAN interfaces are configured. The Internet and DMZ interfaces are on em(4) and the pfsync and LAN vlans on a bge(4) interface.
When I remove one of the Internet or DMZ cables, all Interfaces on both firewalls behave as expected, the Interface where the cable is removed, goes to state INIT, the others become backup. When I do this with the LAN interface, then all carp interfaces for the seven vlans go to master state, but the two remaining carp interfaces for the Internet and DMZ stay in backup mode. my configuration on both hosts: net.inet.carp.preempt=1 net.inet.carp.allow=1 net.inet.carp.arpbalance=0 hostname.carp0 !ifconfig em0 up vhid 1 carpdev em0 172.16.0.1 172.16.0.255 netmask 255.255.255.0 up hostname.carp1 !ifconfig em1 up vhid 1 carpdev em1 172.16.1.1 172.16.1.255 netmask 255.255.255.0 up hostname.carp2 up to hostname carp9 (only the vlan interface numbers and ip addresses are different) !ifconfig bge0 up !ifconfig vlan0 create !ifconfig vlan0 vlan 3 vlandev bge0 up vhid 1 carpdev vlan0 192.168.0.1 192.168.1.255 netmask 255.255.254.0 up I also tried with different vhid's on all interfaces, but with no different results. Anybody knows how to keep the carp interfaces on the vlan devices in same state with the carp interfaces bound to the physical interfaces? Any hint would be greatly appreciated. lars -- GMX Produkte empfehlen und ganz einfach Geld verdienen! Satte Provisionen für GMX Partner: http://www.gmx.net/de/go/partner
