Hey guys- good questions! I remember asking myself the same question and what helped me was reading the RFC for VRRP/CARP. essentially when the old master domes back up it will pick up the changes because there will already be a master running on the pvid, what used to be the slave.
To be short as possible- the old master will rejoin be group as a slave- get the states- then becom master again. Hope this helps. -Joel > On Feb 16, 2014, at 10:03 AM, rajan agarwal <rajanagarwa...@gmail.com> wrote: > > I was about to post the same question. Thanks Brian, been facing a problem > with this in my 2 pfsense setup. > > > >> On Sun, Feb 16, 2014 at 7:20 PM, Brian Candler <b.cand...@pobox.com> wrote: >> I have a question about pfsync failover. >> >> Suppose you have a master/slave firewall pair; the master is broadcasting >> updates to its state table and the slave is picking them up. Then you reboot >> the master firewall. The slave firewall takes over. >> >> When the master firewall comes back, its state table will initiallly be >> empty. So does it have a way to request from the slave a dump of the current >> state table? And will this transfer be completed before it becomes master on >> any CARP interfaces? >> >> I can't see this situation described at >> http://www.openbsd.org/faq/pf/carp.html >> http://www.openbsd.org/cgi-bin/man.cgi?query=pfsync&sektion=4&manpath=OpenBSD+5.4 >> >> It talks about state change messages but not a full resync. >> >> However, I can find a hint of a bulk transfer here: >> http://www.freebsd.org/cgi/man.cgi?query=pfsync&sektion=4 >> and in this old posting: >> http://lists.freebsd.org/pipermail/freebsd-net/2006-May/010823.html >> >> Thanks, >> >> Brian. >> >> _______________________________________________ >> List mailing list >> List@lists.pfsense.org >> http://lists.pfsense.org/mailman/listinfo/list > > _______________________________________________ > List mailing list > List@lists.pfsense.org > http://lists.pfsense.org/mailman/listinfo/list
_______________________________________________ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list
