Re: [pfSense] Maximum CARP Addresses?

[Jim Pingle]

On 02/16/2018 10:09 AM, ad^2 wrote:
> Ok I understand. What are the limitations here? How many aliases can be
> stacked on one CARP VIP?
> 
> Is anyone out there running +255 VIPs?  My implementation will required at
> least 500 floating IPs right away.

While there is no known practical limit, if you feel you need that many
VIPs, most likely your design is deeply flawed in some way.

If you explain the purpose of the setup and how the IP addresses are
delivered to your firewall, there is likely a better way to reach your goal.

Jim P.
___
pfSense mailing list
https://lists.pfsense.org/mailman/listinfo/list
Support the project with Gold! https://pfsense.org/gold

Re: [pfSense] Maximum CARP Addresses?

[ad^2]

On Fri, Feb 16, 2018 at 1:20 AM, Chris L  wrote:

> On Feb 15, 2018, at 11:35 AM, ad^2  wrote:
> >
> > Hello all,
> >
> > I read in the forum (h_t_t_p_s://forum.pfsense.
> org/index.php?topic=109346.0)
> > the 255 VHID limitation in CARP is no longer an issue in recent
> versions. I
> > cannot find any documentation to support it.
> >
> > I have a need to host a lot more than 255 virtual IP addresses.
> >
> > Can someone confirm or deny this. If it's true point me to the
> > documentation that states this. If not, is there a way around it?
> >
> > Thanks in advance,
> >
>
> jimp was referring to the requirement that a CARP VIP must be contained in
> the same subnet as the interface address. Removal of that
> requirement/limitation is what changed.
>
> The VHID is 8 bits and you can’t use 0 so 1-255.
>
> As discussed there, make IP Alias VIPs and assign them to CARP VIPs. They
> will go up and down with CARP MASTER/BACKUP status and will result in no
> additional multicast traffic per VIP. Try it I think you’ll like it.
>
> ___
> pfSense mailing list
> https://lists.pfsense.org/mailman/listinfo/list
> Support the project with Gold! https://pfsense.org/gold
>

Ok I understand. What are the limitations here? How many aliases can be
stacked on one CARP VIP?

Is anyone out there running +255 VIPs?  My implementation will required at
least 500 floating IPs right away.

Thanks,

JD
___
pfSense mailing list
https://lists.pfsense.org/mailman/listinfo/list
Support the project with Gold! https://pfsense.org/gold

Re: [pfSense] Maximum CARP Addresses?

[Chris L]

On Feb 15, 2018, at 11:35 AM, ad^2  wrote:
> 
> Hello all,
> 
> I read in the forum (h_t_t_p_s://forum.pfsense.org/index.php?topic=109346.0)
> the 255 VHID limitation in CARP is no longer an issue in recent versions. I
> cannot find any documentation to support it.
> 
> I have a need to host a lot more than 255 virtual IP addresses.
> 
> Can someone confirm or deny this. If it's true point me to the
> documentation that states this. If not, is there a way around it?
> 
> Thanks in advance,
> 

jimp was referring to the requirement that a CARP VIP must be contained in the 
same subnet as the interface address. Removal of that requirement/limitation is 
what changed.

The VHID is 8 bits and you can’t use 0 so 1-255.

As discussed there, make IP Alias VIPs and assign them to CARP VIPs. They will 
go up and down with CARP MASTER/BACKUP status and will result in no additional 
multicast traffic per VIP. Try it I think you’ll like it.

___
pfSense mailing list
https://lists.pfsense.org/mailman/listinfo/list
Support the project with Gold! https://pfsense.org/gold

Re: [pfSense] Maximum CARP Addresses?

[PiBa]

Hi JD,

Op 15-2-2018 om 20:35 schreef ad^2:

Hello all,

I read in the forum (h_t_t_p_s://forum.pfsense.org/index.php?topic=109346.0)
the 255 VHID limitation in CARP is no longer an issue in recent versions. I
cannot find any documentation to support it.

I have a need to host a lot more than 255 virtual IP addresses.

Can someone confirm or deny this. If it's true point me to the
documentation that states this. If not, is there a way around it?

Thanks in advance,

JD
___
pfSense mailing list
https://lists.pfsense.org/mailman/listinfo/list
Support the project with Gold! https://pfsense.org/gold


Does the pfSense box have more than 255 interfaces/vlans?
If you need multiple virtual IP's on 1 interface, you can define 
multiple ip aliases under a single CARP ip. Maybe that helps..


The forum states that the old "Stacked IP Alias VIPs must be inside the 
same subnet as the CARP VIP upon which they are placed." and that that 
is nolonger the case.

The limit of max 255 is still there afaik..

Regards,
PiBa-NL

___
pfSense mailing list
https://lists.pfsense.org/mailman/listinfo/list
Support the project with Gold! https://pfsense.org/gold

[pfSense] Maximum CARP Addresses?

[ad^2]

Hello all,

I read in the forum (h_t_t_p_s://forum.pfsense.org/index.php?topic=109346.0)
the 255 VHID limitation in CARP is no longer an issue in recent versions. I
cannot find any documentation to support it.

I have a need to host a lot more than 255 virtual IP addresses.

Can someone confirm or deny this. If it's true point me to the
documentation that states this. If not, is there a way around it?

Thanks in advance,

JD
___
pfSense mailing list
https://lists.pfsense.org/mailman/listinfo/list
Support the project with Gold! https://pfsense.org/gold