Re: [pfSense] single pfsense to ha conversion

Did my conversion this way: - added carp ips to firewall - did config backup - switched carp and main ips with editor - restored config to firewall - edited fw & nat rules - did backup - edited ips and restored to sec. firewall - and enabled config sync works well.it was about two hour job ;)

Re: [pfSense] single pfsense to ha conversion

> On Dec 4, 2017, at 9:07 AM, Eero Volotinen wrote: > > well. my plan was to add first carp vip addresses to old configuration with > gui and then > switching them to main addresses using search and replace. > > and then just restore config to main firewall and use

Re: [pfSense] single pfsense to ha conversion

well. my plan was to add first carp vip addresses to old configuration with gui and then switching them to main addresses using search and replace. and then just restore config to main firewall and use config sync to replicate it to secondary.. -- Eero 2017-12-04 18:41 GMT+02:00 Chris L

Re: [pfSense] single pfsense to ha conversion

On Dec 4, 2017, at 8:11 AM, Eero Volotinen wrote: > > Well. is that really so hard? > > thinking to add carp ip addresses and switching them to main addresses by > editing xml backup and then restoring it to firewall.. > > I have same hardware (3* sg-8860). one for

Re: [pfSense] single pfsense to ha conversion

Well. is that really so hard? thinking to add carp ip addresses and switching them to main addresses by editing xml backup and then restoring it to firewall.. I have same hardware (3* sg-8860). one for backup.. Eero 4.12.2017 17.49 "Steve Yates" kirjoitti: > I don't think

Re: [pfSense] single pfsense to ha conversion

I don't think it would qualify as "simple" since it involves setting up an additional interface on each as well as the CARP virtual IPs. If you're asking about linking your old router to a new router, the routers have to use the same hardware interface (NIC) names in order to sync firewall