Re: em/carp switches slower than fxp/carp [SOLVED]
Hello Jason, Jason Ackley wrote: Stephan A. Rickauer wrote: I guess the general problem here is two machines appear with one mac address at the same time on both switches, right? How can one solve that? You may also want to make sure that the port is in STP 'portfast' mode or whatever your vendor calls it (basically, once there is a link, go right to the STP forwarding state, bypassing the Listen state to see if there are any loops). That was it. I just had to find out how Dell calls that thing - turned out they refer to it as 'edge port'. However, switching the ports the firewalls are conntected to in an edge port fixed it. Takeover now takes place in literally no time. Thanks a lot for your help! -- Stephan A. Rickauer Institut f|r Neuroinformatik Universitdt / ETH Z|rich Winterthurerstriasse 190 CH-8057 Z|rich Tel: +41 44 635 30 50 Sek: +41 44 635 30 52 Fax: +41 44 635 30 53 http://www.ini.ethz.ch
Re: em/carp switches slower than fxp/carp
Bill Marquette wrote: Any chance the em's are on a switch doing spanning tree? Or that the fxp port (on the master is set to port fast)? Sounds like STP locking out the em ports on the master to me. Hit. Each firewall's em interface is connected to one switch per machine with two separate VLAN's. The switches are interconnected by a 'trunk'. I guess the general problem here is two machines appear with one mac address at the same time on both switches, right? How can one solve that? My 'level 3' knowledge is kind of rudimentary, only ... Thanks, -- Stephan A. Rickauer Institut f|r Neuroinformatik Universitdt / ETH Z|rich Winterthurerstriasse 190 CH-8057 Z|rich Tel: +41 44 635 30 50 Sek: +41 44 635 30 52 Fax: +41 44 635 30 53 http://www.ini.ethz.ch
Re: em/carp switches slower than fxp/carp
On 9/26/05, Stephan A. Rickauer [EMAIL PROTECTED] wrote: Bill Marquette wrote: Any chance the em's are on a switch doing spanning tree? Or that the fxp port (on the master is set to port fast)? Sounds like STP locking out the em ports on the master to me. Hit. Each firewall's em interface is connected to one switch per machine with two separate VLAN's. The switches are interconnected by a 'trunk'. I guess the general problem here is two machines appear with one mac address at the same time on both switches, right? How can one solve that? The problem is that the switch will hold down the port to learn what traffic is coming out of it to ensure that you don't introduce a loop. Either turning STP off on the port or changing the port to STP port fast should eliminate the delay, leaving you of course with the risk that someone will plug a switch into those ports and somehow create a loop :) --Bill
em/carp switches slower than fxp/carp
Hello, is there any known problem related to em interfaces and carp? They take 25 seconds longer to switch status from master to backup compared to an fxp one ... Output of 'while true; do date; ifconfig| grep carp:; sleep 1;done' while rebooting the master (=advskew 50): Fri Sep 23 14:25:16 CEST 2005 carp: MASTER carpdev em0 vhid 1 advbase 1 advskew 100 carp: MASTER carpdev em1 vhid 2 advbase 1 advskew 100 carp: MASTER carpdev fxp0 vhid 3 advbase 1 advskew 100 Fri Sep 23 14:25:17 CEST 2005 carp: MASTER carpdev em0 vhid 1 advbase 1 advskew 100 carp: MASTER carpdev em1 vhid 2 advbase 1 advskew 100 carp: BACKUP carpdev fxp0 vhid 3 advbase 1 advskew 100 . . . Fri Sep 23 14:25:43 CEST 2005 carp: MASTER carpdev em0 vhid 1 advbase 1 advskew 100 carp: MASTER carpdev em1 vhid 2 advbase 1 advskew 100 carp: BACKUP carpdev fxp0 vhid 3 advbase 1 advskew 100 Fri Sep 23 14:25:44 CEST 2005 carp: BACKUP carpdev em0 vhid 1 advbase 1 advskew 100 carp: BACKUP carpdev em1 vhid 2 advbase 1 advskew 100 carp: BACKUP carpdev fxp0 vhid 3 advbase 1 advskew 100 Any ideas? Thanks! -- Stephan A. Rickauer Institut f|r Neuroinformatik Universitdt / ETH Z|rich Winterthurerstriasse 190 CH-8057 Z|rich Tel: +41 44 635 30 50 Sek: +41 44 635 30 52 Fax: +41 44 635 30 53 http://www.ini.ethz.ch
Re: em/carp switches slower than fxp/carp
Any chance the em's are on a switch doing spanning tree? Or that the fxp port (on the master is set to port fast)? Sounds like STP locking out the em ports on the master to me. --Bill On 9/23/05, Stephan A. Rickauer [EMAIL PROTECTED] wrote: Hello, is there any known problem related to em interfaces and carp? They take 25 seconds longer to switch status from master to backup compared to an fxp one ... Output of 'while true; do date; ifconfig| grep carp:; sleep 1;done' while rebooting the master (=advskew 50): Fri Sep 23 14:25:16 CEST 2005 carp: MASTER carpdev em0 vhid 1 advbase 1 advskew 100 carp: MASTER carpdev em1 vhid 2 advbase 1 advskew 100 carp: MASTER carpdev fxp0 vhid 3 advbase 1 advskew 100 Fri Sep 23 14:25:17 CEST 2005 carp: MASTER carpdev em0 vhid 1 advbase 1 advskew 100 carp: MASTER carpdev em1 vhid 2 advbase 1 advskew 100 carp: BACKUP carpdev fxp0 vhid 3 advbase 1 advskew 100 . . . Fri Sep 23 14:25:43 CEST 2005 carp: MASTER carpdev em0 vhid 1 advbase 1 advskew 100 carp: MASTER carpdev em1 vhid 2 advbase 1 advskew 100 carp: BACKUP carpdev fxp0 vhid 3 advbase 1 advskew 100 Fri Sep 23 14:25:44 CEST 2005 carp: BACKUP carpdev em0 vhid 1 advbase 1 advskew 100 carp: BACKUP carpdev em1 vhid 2 advbase 1 advskew 100 carp: BACKUP carpdev fxp0 vhid 3 advbase 1 advskew 100 Any ideas? Thanks! -- Stephan A. Rickauer Institut f|r Neuroinformatik Universitdt / ETH Z|rich Winterthurerstriasse 190 CH-8057 Z|rich Tel: +41 44 635 30 50 Sek: +41 44 635 30 52 Fax: +41 44 635 30 53 http://www.ini.ethz.ch
