[pfSense] Replacing a Linux router with pfSense
Tonix (Antonio Nati)
tonix at interazioni.it
Wed Sep 21 08:23:33 EDT 2011
Il 21/09/2011 14:05, Chris Buechler ha scritto:
> On Wed, Sep 21, 2011 at 7:55 AM, Tonix (Antonio Nati)
> <tonix at interazioni.it> wrote:
>> I think you should examine how CARP works on your routers and how it works
>> in pfsense.
>>
>> In pre 2.0 version, PFsense CARP has a (fixed) different zone for each
>> interface, so if an interface goes down it switches only that interface, and
>> traffic bind to that interface becomes unreachable.
>> It is useful only if a machine goes down, not if an interface goes down.
>>
>> If you actually switch all interfaces when one goes down, you can't do on
>> pfsense.
> That's not true and never been true, the behavior of all versions is
> to switch over all CARP IPs if any NIC on the primary can no longer
> communicate with the secondary. You have something wrong on your
> setup, or have intentionally disabled that via a manual hack, if
> that's what yours does.
We did several checks before putting it in production.
PFsense 1.2.3, no hack, ony web setup.
Setup forced to give a different vhid to each VIP, and we saw vhid are
completely indipendent.
We will check it again as we dismiss it.
Regards,
Tonino
> _______________________________________________
> List mailing list
> List at lists.pfsense.org
> http://lists.pfsense.org/mailman/listinfo/list
>
--
------------------------------------------------------------
Inter at zioni Interazioni di Antonio Nati
http://www.interazioni.it tonix at interazioni.it
------------------------------------------------------------
More information about the List
mailing list