I'm not an expert here but what I understand is: while you can use pfsync to
sync raw connection states the daemon(s) aren't 'aware' of those per-se. You
basically have 3 options that I can think of..
1. Let the daemon run on the WAN interface of each router and configure your
clients with both
It looks like as soon as I bring IPv6 to the party, my secondary starts
thinking it's MASTER instead of BACKUP. Sometimes on the WAN side, sometimes
on the LAN, sometimes both. Quite hard to describe, I'm still trying to build
up a reproducible test case on my 2.3 cluster. So out of the blue,
On Mon, Apr 25, 2016 at 2:12 PM, Steve Yates wrote:
> I missed that also, way back when, thanks. We had been connecting to
> either router1 or router2's WAN IP. If router2 is not the CARP master, you
> can connect to it, but it will try to send the response back out through
> router1 so one can
I missed that also, way back when, thanks. We had been connecting to either
router1 or router2's WAN IP. If router2 is not the CARP master, you can
connect to it, but it will try to send the response back out through router1 so
one can't get bi-directional communication.
--
Steve Yates
ITS,
> Le 25 avr. 2016 à 20:04, Travis Hansen a écrit :
> Did you select the carp IP as the 'interface' in the openvpn server config?
> or do you just have WAN selected?
> Le 25 avr. 2016 à 20:21, Brady, Mike a écrit :
> Did you change the OpenVPN configured Interface to be the VIP rather than the
On 2016-04-26 05:36, Olivier Mascia wrote:
Hello,
I now have a HA cluster of 2 pfSense boxes pretty much well setup,
everything working as expected, excepted one thing.
Connecting to a remote access OpenVPN server on the WAN CARP IP fails
here:
Apr 25 19:29:36: Vérification du statut d'access
> Le 25 avr. 2016 à 20:04, Travis Hansen a écrit :
>
> Did you select the carp IP as the 'interface' in the openvpn server config?
> or do you just have WAN selected?
Hmm... I'm on the move since my previous post, but this seems obvious enough
for me having made that mistake. :)
I'll check ba
Did you select the carp IP as the 'interface' in the openvpn server config? or
do you just have WAN selected?
I have a similar setup that works fine. Although if the carp address changes
to a new machine I do need to reconnect (may be a way around this but my needs
are simple). Travis Hansen tr
Hello,
I now have a HA cluster of 2 pfSense boxes pretty much well setup, everything
working as expected, excepted one thing.
Connecting to a remote access OpenVPN server on the WAN CARP IP fails here:
Apr 25 19:29:36: Vérification du statut d'accessibilité de la connexion ...
Apr 25 19:29:36: L