Re: [pfSense Support] 1.2.1-RC4 failover supposed to be stateful? & OpenVPN config sync?

Fri, 26 Dec 2008 14:28:31 -0800 

On 26-Dec-08, at 4:33 PM, Paul Mansfield wrote:


Jason Lixfeld wrote:
When I tried a failover last night, everything failed over properly but all my active sessions had to be terminated and restarted (SSH, Remote 
Desktop).  OpenVPN didn't fail over either.  It timed out and
automatically reconnected (but still...).  Am I wrong in that pfSense
failover is supposed to be stateful?


are you using a dedicate sync interface


Yes.


a direct cable



Well, kinda.  As far as the OS is concerned it's a dedicated NIC.   
It's running inside an ESXi VM so it's a VLAN on a trunk as far as  
VMWare is concerned.



and got the right rules on that interface?


Yup.  Permit any any.

I just forced a sync and checked the logs.  Nothing looks odd.

Dec 26 17:17:31
php: : XMLRPC sync successfully completed with http://10.255.255.2:80.
Dec 26 17:17:31
php: : Beginning XMLRPC sync to http://10.255.255.2:80.
Dec 26 17:17:28
check_reload_status: reloading filter
Dec 26 17:17:26
kernel: arp_rtrequest: bad gateway 10.1.11.1 (!AF_LINK)
Dec 26 17:17:26
kernel: carp1: INIT -> MASTER (preempting)
Dec 26 17:17:26
kernel: arp_rtrequest: bad gateway aaa.bbb.ccc.210 (!AF_LINK)
Dec 26 17:17:26
kernel: carp0: INIT -> MASTER (preempting)
Dec 26 17:17:26
kernel: carp1: MASTER -> BACKUP (more frequent advertisement received)
Dec 26 17:17:26
kernel: arp_rtrequest: bad gateway 10.1.11.1 (!AF_LINK)
Dec 26 17:17:26
kernel: carp1: INIT -> MASTER (preempting)
Dec 26 17:17:26
kernel: carp0: MASTER -> BACKUP (more frequent advertisement received)
Dec 26 17:17:26
kernel: arp_rtrequest: bad gateway aaa.bbb.ccc.210 (!AF_LINK)
Dec 26 17:17:26
kernel: carp0: INIT -> MASTER (preempting)
Dec 26 17:17:26
kernel: arp_rtrequest: bad gateway 10.1.11.1 (!AF_LINK)
Dec 26 17:17:26
kernel: carp1: INIT -> MASTER (preempting)
Dec 26 17:17:26
kernel: arp_rtrequest: bad gateway aaa.bbb.ccc.210 (!AF_LINK)
Dec 26 17:17:26
kernel: carp0: INIT -> MASTER (preempting)


I checked the state table on the master:  29 entries.  backup:  11  
entries.


---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Commercial support available - https://portal.pfsense.org























					Reply via email to