On Fri, 5 May 2006 19:25:24 +0200 Ispánovits Imre <[EMAIL PROTECTED]> wrote:
> On Fri, 5 May 2006 11:18:52 -0400 > "Scott Ullrich" <[EMAIL PROTECTED]> wrote: > > > On 5/5/06, Ispánovits Imre <[EMAIL PROTECTED]> wrote: > > > > The WAN's are plugged into Cisco routers (SOHO series provided by the > > > > ISP). > > > > On the LAN there are several switches and also on the DMZ. But how > > > > could > > > > affect wan, lan or dmz interface the fully isolated interface used for > > > > carp > > > > synchronization? Does it? > > > > Does the cisco allow CARP to talk from one machine to the other on the > > WAN interface? The CISCO needs to allow the broadcast traffic between > > the two WAN interfaces. My guess is that it isn't. > > > > To test simply remove the two WAN's from the CISCO router and hook > > them up to a switch or hub. If one of the boxes returns to secondary > > you know where the problem lies. > > > Yes maybe that is the cause. I thought CARP talks only on its dedicated > interface where synchronize in my case OPT2 (SYNC). > I will try it with a HUB ,but unfortunately only on monday :( > > Thank you and I will refer about the results. > > Imre I have rebuilt from scratch the two carp boxes with the latest (05-05-2006) snapshot. Here are the results step by step. The configuration: (there are two identical boxes) fxp0 - OPT3 - (SYNC) . It is the carp synchronization interface xl0 - LAN xl1 - WAN xl2 - OPT1 - WAN2 xl3 - OPT2 - DMZ The WAN, DMZ and WAN2 interfaces of the two machines are connected to 1-1 HUB. Everything is fine until I have set up carp with LAN - WAN - DMZ. In this case master - backup relations are correct, one master and one backup. When I add WAN2 to the carp setup the master - backup relation blows up. Both machine can be master, sometime on all, sometime only on one or two interfaces. An other issue: If I create a load balancing pool then packets sent towards the DMZ subnet are going out to the internet on any of the WAN interfaces :( Probably I'm missing some rules. This latter is independent of WAN2 is included in carp or not. The issue is over as soon as a delete the load balance pool. What do I wrong? Best regards Imre
signature.asc
Description: PGP signature
