On Mon, 8 May 2006 19:49:52 +0200 Ispánovits Imre <[EMAIL PROTECTED]> wrote:
> On Fri, 5 May 2006 19:25:24 +0200 > Ispánovits Imre <[EMAIL PROTECTED]> wrote: > > > On Fri, 5 May 2006 11:18:52 -0400 > > "Scott Ullrich" <[EMAIL PROTECTED]> wrote: > > > > > On 5/5/06, Ispánovits Imre <[EMAIL PROTECTED]> wrote: > > > > > The WAN's are plugged into Cisco routers (SOHO series provided by the > > > > > ISP). > > > > > On the LAN there are several switches and also on the DMZ. But how > > > > > could > > > > > affect wan, lan or dmz interface the fully isolated interface used > > > > > for carp > > > > > synchronization? Does it? > > > > > > Does the cisco allow CARP to talk from one machine to the other on the > > > WAN interface? The CISCO needs to allow the broadcast traffic between > > > the two WAN interfaces. My guess is that it isn't. > > > > > > To test simply remove the two WAN's from the CISCO router and hook > > > them up to a switch or hub. If one of the boxes returns to secondary > > > you know where the problem lies. > > > > > Yes maybe that is the cause. I thought CARP talks only on its dedicated > > interface where synchronize in my case OPT2 (SYNC). > > I will try it with a HUB ,but unfortunately only on monday :( > > > > Thank you and I will refer about the results. > > > > Imre > I have rebuilt from scratch the two carp boxes with the latest (05-05-2006) > snapshot. Here are the results step by step. > The configuration: (there are two identical boxes) > fxp0 - OPT3 - (SYNC) . It is the carp synchronization interface > xl0 - LAN > xl1 - WAN > xl2 - OPT1 - WAN2 > xl3 - OPT2 - DMZ > The WAN, DMZ and WAN2 interfaces of the two machines are connected to 1-1 HUB. > Everything is fine until I have set up carp with LAN - WAN - DMZ. In this case > master - backup relations are correct, one master and one backup. > When I add WAN2 to the carp setup the master - backup relation blows up. Both > machine can be master, sometime on all, sometime only on one or two > interfaces. > An other issue: If I create a load balancing pool then packets sent > towards the DMZ subnet are going out to the internet on any of the WAN > interfaces :( > Probably I'm missing some rules. > This latter is independent of WAN2 is included in carp or not. > The issue is over as soon as a delete the load balance pool. > What do I wrong? > > Best regards > Imre I correct myself. it seems that all issues are gone as soon as I deleted outgoing load balance. It seems I have to live without it.
signature.asc
Description: PGP signature
