Sure it syncs, but node1 has completely different IP addresses than node2(both external and internal ??), if no CARP. So storing states from node1, which passes/initiated connection to ftp.fr , on node2 does not help.
In your case, you'd probably to decide to ever have MASTER-BACKUP or to have MASTER-MASTER CARP setup. On 3 jul 2013, at 14:40, Loïc Blot <loic.b...@unix-experience.fr> wrote: > It's not possible to sync pf table without CARP ? > > I must use it in some case, then those case will be fixed but the other > (OSPFd routing) may fail i think ? > > -- > Best regards, > > Loïc BLOT, Engineering > UNIX Systems, Security and Networks > http://www.unix-experience.fr > > > Le mercredi 03 juillet 2013 à 07:11 -0500, Mark Felder a écrit : >> On Wed, 03 Jul 2013 07:00:02 -0500, Loïc Blot >> <loic.b...@unix-experience.fr> wrote: >> >>> Hello, >>> no carp is used at this time. >> >> pfsync needs to be used with carp... without it you're just playing >> whack-a-mole with your session table.