On Wed, 14 Mar 2007, Dag Richards wrote:
> Since reporting this problem I have tried running both systems on one switch,
> and performed a kernel and userland build from stable.
> The behavior is unchanged in both cases.
>
> help? Am I really that stupid? This was working on 3.9
>
> Dag Richards wrote:
> > Two systems running 4.0 GENERIC#1107 i386 on bge drivers.
> > They are being used as vpn servers
> > They are each jacked to their own cisco 2950. The switches are connected
> > with to each other xover cables. Each host can see the others carp traffic,
> > pf is configured to quick pass carp traffic. both system insists on being
> > master. I can ifconfig the desired slave to backup state but after a couple
> > of seconds it pops back to master.
> > I am using sasync, the tunnels are all up and traffic flows as expected
> > though I think that has more to do with pfsync keeping the state tables
> > synced, and the internal interfaces are behaving correctly.
> >
> > The inside ifaces are jacked into the same switch, but shouldn't I be able
> > to be jacked into two separate switches?
> >
> > Erm ... ? I am in GMT + 8, tomorrow morning I will try putting the slave on
> > the same switch as master, but that or course creates a single point of
> > failure.
> >
> > Any other hints?
Your two carp interfaces should have the exact same address list,
otherwise their hash won't match and the two carp interfaces will both
be independent. Add the 10.120.10.2 alias on the slave and your
problem will likely disappear.
-Otto
PS: camield@ spotted this but I don't see him replying...)
> >
> >
> >
> > dump from should be slave
> >
> > 18:21:16.870759 CARPv2-advertise 36: vhid=33 advbase=1 advskew=200 demote=0
> > (DF) [tos 0x10]
> > 18:21:16.960298 CARPv2-advertise 36: vhid=33 advbase=1 advskew=10 demote=0
> > (DF) [tos 0x10]
> > 18:21:18.010311 CARPv2-advertise 36: vhid=33 advbase=1 advskew=10 demote=0
> > (DF) [tos 0x10]
> > 18:21:18.670753 CARPv2-advertise 36: vhid=33 advbase=1 advskew=200 demote=0
> > (DF) [tos 0x10]
> > 18:21:19.060327 CARPv2-advertise 36: vhid=33 advbase=1 advskew=10 demote=0
> > (DF) [tos 0x10]
> > 18:21:20.110341 CARPv2-advertise 36: vhid=33 advbase=1 advskew=10 demote=0
> > (DF) [tos 0x10]
> > 18:21:20.470750 CARPv2-advertise 36: vhid=33 advbase=1 advskew=200 demote=0
> > (DF) [tos 0x10]
> >
> > ifconfig on slave
> > carp0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
> > lladdr 00:00:5e:00:01:21
> > carp: MASTER carpdev bge0 vhid 33 advbase 1 advskew 200
> > groups: carp
> > inet6 fe80::200:5eff:fe00:121%carp0 prefixlen 64 scopeid 0x8
> > inet 10.120.10.50 netmask 0xff000000 broadcast 10.120.10.255
> >
> > slave:root:/etc #sysctl -a | grep carp
> > net.inet.carp.allow=1
> > net.inet.carp.preempt=1
> > net.inet.carp.log=0
> > net.inet.carp.arpbalance=0
> >
> >
> >
> > dump from should be master
> > 18:21:16.871448 CARPv2-advertise 36: vhid=33 advbase=1 advskew=200 demote=0
> > (DF) [tos 0x10]
> > 18:21:16.960692 CARPv2-advertise 36: vhid=33 advbase=1 advskew=10 demote=0
> > (DF) [tos 0x10]
> > 18:21:18.010696 CARPv2-advertise 36: vhid=33 advbase=1 advskew=10 demote=0
> > (DF) [tos 0x10]
> > 18:21:18.671396 CARPv2-advertise 36: vhid=33 advbase=1 advskew=200 demote=0
> > (DF) [tos 0x10]
> > 18:21:19.060686 CARPv2-advertise 36: vhid=33 advbase=1 advskew=10 demote=0
> > (DF) [tos 0x10]
> > 18:21:20.110681 CARPv2-advertise 36: vhid=33 advbase=1 advskew=10 demote=0
> > (DF) [tos 0x10]
> >
> > ifconfig on master
> > carp0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
> > lladdr 00:00:5e:00:01:21
> > carp: MASTER carpdev bge0 vhid 33 advbase 1 advskew 10
> > groups: carp
> > inet6 fe80::200:5eff:fe00:121%carp0 prefixlen 64 scopeid 0x8
> > inet 10.120.10.50 netmask 0xffffff00 broadcast 10.120.10.255
> > inet 10.120.10.2 netmask 0xffffff00 broadcast 10.120.10.255
> >
> > master:root:/root #sysctl -a | grep carp
> > net.inet.carp.allow=1
> > net.inet.carp.preempt=1
> > net.inet.carp.log=0
> > net.inet.carp.arpbalance=0
