Are you allowing the carp traffic in and out?
This is the more common fuckup I make when configuring them that has
this result. make sure the carp and pfsync traffic makes it in and
out.
Dag Richards wrote:
Your understanding of preempt seems correct
I had a similar issue on a pair of 4.1 FW's.
A careful examination revealed that one of the carp ifaces on one system
had ip addrs that were missing on the other.
Carefully compare ifconfig -aA on each machine to each other.
I
Hello, A quick question.
I have a pair of 4.1 boxes acting as firewalls using carp/pfsync etc.
The primary has advskew 0, the backup has advskew 100. I have
net.inet.carp.preempt=1 on both.
So anyway, I was downloading some 4.2 install binaries onto the backup
fw, and I noticed that the
On 2007/12/06 10:06, Josh wrote:
So anyway, I was downloading some 4.2 install binaries onto the backup fw,
and I noticed that the backup/primary carp interfaces kept on switching
between master/backup fairly rapidly ( around every 5 - 10 seconds or so )
despite both hosts being up just
Stuart Henderson wrote:
On 2007/12/06 11:48, Josh wrote:
I will investigate what Stuart Henderson mentioned.
If it's that, tcpdump on the parent iface will show proto 112 IPv6
packets every few seconds, and ifconfig carpXX destroy sh /etc/netstart
carpXX should clear things out.
It does not
Josh wrote:
Hello, A quick question.
I have a pair of 4.1 boxes acting as firewalls using carp/pfsync etc.
The primary has advskew 0, the backup has advskew 100. I have
net.inet.carp.preempt=1 on both.
So anyway, I was downloading some 4.2 install binaries onto the backup
fw, and I noticed
On 2007/12/06 11:48, Josh wrote:
I will investigate what Stuart Henderson mentioned.
If it's that, tcpdump on the parent iface will show proto 112 IPv6
packets every few seconds, and ifconfig carpXX destroy sh /etc/netstart
carpXX should clear things out.
It does not happen all the time, just
7 matches
Mail list logo
