Ispánovits Imre wrote:
In my case there is no switch between the two CARP boxes, but a Xover
cable. But I can suspect the cards, which are old 3Com ISA bus cards
That's probably why it's called the road to dISAster
Rainer
On Thu, 04 May 2006 21:07:48 +0200
Rainer Duffner [EMAIL PROTECTED] wrote:
Ispánovits Imre wrote:
In my case there is no switch between the two CARP boxes, but a Xover
cable. But I can suspect the cards, which are old 3Com ISA bus cards
That's probably why it's called the road
Have you added allow all rules on the pfsync interfaces?
On 5/4/06, Ispánovits Imre [EMAIL PROTECTED] wrote:
On Thu, 04 May 2006 21:07:48 +0200
Rainer Duffner [EMAIL PROTECTED] wrote:
Ispánovits Imre wrote:
In my case there is no switch between the two CARP boxes, but a Xover
cable. But
On Thu, 4 May 2006 15:46:12 -0400
Scott Ullrich [EMAIL PROTECTED] wrote:
Have you added allow all rules on the pfsync interfaces?
Yes, I did.
signature.asc
Description: PGP signature
On 5/4/06, Ispánovits Imre [EMAIL PROTECTED] wrote:
On Thu, 4 May 2006 15:46:12 -0400
Scott Ullrich [EMAIL PROTECTED] wrote:
Have you added allow all rules on the pfsync interfaces?
Yes, I did.
What about the switch where both the wan and lan interfaces plug into?
They also need to be able
On Tue, 2 May 2006 19:18:46 +0200
Ispánovits Imre [EMAIL PROTECTED] wrote:
On Tue, 2 May 2006 11:53:51 -0400
Scott Ullrich [EMAIL PROTECTED] wrote:
1.) Since pfsense1 which is originally the master was down and pfsense2
(backup)
took its role, both machines shows up in the carp
Do not use special caracters anywhere!
-Original Message-
From: Scott Ullrich [mailto:[EMAIL PROTECTED]
Sent: sexta-feira, 28 de Abril de 2006 18:17
To: support@pfsense.com
Subject: Re: [pfSense Support] CARP setup problem
That error sounds like username / password / http/https
Hi,
CARP is now up and running :) It's great!
I noticed though some phenomena that I at least don't understand.
1.) Since pfsense1 which is originally the master was down and pfsense2 (backup)
took its role, both machines shows up in the carp status page as master.
2.) The CARP virtual IP's
On 5/2/06, Ispánovits Imre [EMAIL PROTECTED] wrote:
Hi,
CARP is now up and running :) It's great!
I noticed though some phenomena that I at least don't understand.
1.) Since pfsense1 which is originally the master was down and pfsense2 (backup)
took its role, both machines shows up in the carp
On Tue, 2 May 2006 11:53:51 -0400
Scott Ullrich [EMAIL PROTECTED] wrote:
1.) Since pfsense1 which is originally the master was down and pfsense2
(backup)
took its role, both machines shows up in the carp status page as master.
run cvs_sync.sh releng_1 from a shell if this is a full
Hi,
I need help for setting up a CARP cluster.
I followed the tutorial. On the and I have a master which seems to be
O.K., and a slave? where the carp status is empty (except pfsync nodes
list). It seems if it weren't enabled.
In the system logs I fond the following:
Apr 28 13:48:35php: :
That error sounds like username / password / http/https mismatch
between the two firewalls.
On 4/28/06, Ispánovits Imre [EMAIL PROTECTED] wrote:
Hi,
I need help for setting up a CARP cluster.
I followed the tutorial. On the and I have a master which seems to be
O.K., and a slave? where the
It seems that there were several descriptions in different sections of
the configuration which contained non-standard ascii characters. (I'm
using utf-8 on my notebook). After getting rid of all national
characters in comment fields, the synchronization started.
Thank you Scott for your help and
Yes, I really need to fix this. Thanks for bringing it to my attention.
On 4/28/06, Ispánovits Imre [EMAIL PROTECTED] wrote:
It seems that there were several descriptions in different sections of
the configuration which contained non-standard ascii characters. (I'm
using utf-8 on my
-Original Message-
From: Bill Marquette [mailto:[EMAIL PROTECTED]
Sent: segunda-feira, 27 de Março de 2006 2:07
To: support@pfsense.com
Subject: Re: [pfSense Support] Carp is a bit confused...
Hmmm...what model Intel NICs are these? I'll try and get a couple
boxes together at work as I've got
On 3/27/06, Amorim, Nuno Alexandre (ext) [EMAIL PROTECTED] wrote:
I have pfsense working on two SunFire v20z with two dual intel gigabit NIC
(copper).
I had this similar problem also. First it was wrong netmasks. Then I had some
errors in the configuration of the switches (cisco). They were
.
-Original Message-
From: Scott Ullrich [mailto:[EMAIL PROTECTED]
Sent: segunda-feira, 27 de Março de 2006 16:07
To: support@pfsense.com
Subject: Re: [pfSense Support] Carp is a bit confused...
On 3/27/06, Amorim, Nuno Alexandre (ext) [EMAIL PROTECTED] wrote:
I have pfsense working on two
To: support@pfsense.com
Subject: Re: [pfSense Support] Carp is a bit confused...
On 3/27/06, Amorim, Nuno Alexandre (ext) [EMAIL PROTECTED]
wrote:
I have pfsense working on two SunFire v20z with two dual intel gigabit
NIC (copper).
I had this similar problem also. First it was wrong
that I'm
experiencing with Intel gigabit NICs. I haven't any spare HW at the moment
so can't myself.
Simon.
-Original Message-
From: Peter Curran [mailto:[EMAIL PROTECTED]
Sent: Saturday, 25 March 2006 7:18 a.m.
To: support@pfsense.com
Subject: Re: [pfSense Support] Carp is a bit
: Re: [pfSense Support] Carp is a bit confused...
Jan Z is also having problems with these nics. Starting to point to a
driver issue...
On 3/26/06, Simon O'Sullivan [EMAIL PROTECTED] wrote:
Peter,
Are you able to test your setup using cards other than Intel Gigabit
NIC's?
These master/slave
only)
-Original Message-
From: Scott Ullrich [mailto:[EMAIL PROTECTED]
Sent: Monday, 27 March 2006 9:35 a.m.
To: support@pfsense.com
Cc: [EMAIL PROTECTED]
Subject: Re: [pfSense Support] Carp is a bit confused...
Jan Z is also having problems with these nics. Starting to point
with Intel gigabit NICs. I haven't any spare HW at the
moment so can't myself.
Simon.
-Original Message-
From: Peter Curran [mailto:[EMAIL PROTECTED]
Sent: Saturday, 25 March 2006 7:18 a.m.
To: support@pfsense.com
Subject: Re: [pfSense Support] Carp is a bit confused
NIC's? (not necessarily with Pfsense only)
-Original Message-
From: Scott Ullrich [mailto:[EMAIL PROTECTED]
Sent: Monday, 27 March 2006 9:35 a.m.
To: support@pfsense.com
Cc: [EMAIL PROTECTED]
Subject: Re: [pfSense Support] Carp is a bit confused...
Jan Z is also having problems
Hello Peter
I had a similar issue. Verify the netmask of the carp interface. It is the same
has the network.
-Original Message-
From: Peter Curran [mailto:[EMAIL PROTECTED]
Sent: sexta-feira, 24 de Março de 2006 0:09
To: support@pfsense.com
Subject: Re: [pfSense Support] Carp is a bit
On 3/23/06, Peter Curran [EMAIL PROTECTED] wrote:
[snip]
OK - what is outstanding on the port (apart from the minor bug in the GUI and
a need for a better way to handle the AES key)?
It currently will communicate with a neighbor but I have not tackled
the openbsd setkey - freebsd setkey piece
. Verify the netmask of the carp interface. It is the
same has the network.
-Original Message-
From: Peter Curran [mailto:[EMAIL PROTECTED]
Sent: sexta-feira, 24 de Março de 2006 0:09
To: support@pfsense.com
Subject: Re: [pfSense Support] Carp is a bit confused...
Hi Scott
On Thursday
On 3/24/06, Peter Curran [EMAIL PROTECTED] wrote:
No - this is not the problem. I have quadruple checked all this and it is
consistent and correct.
I have just tried increasing the advertising frequency on the slave, but
although it flicked to 'backup' status briefly because of the change,
I'm seeing this in the system log:
Mar 24 17:02:26 kernel: arp_rtrequest: bad gateway x.x.x.x (!AF_LINK)
Mar 24 17:02:27 kernel: arp_rtrequest: bad gateway y.y.y.y (!AF_LINK)
The status CARP looks fine, though these messages seem new, is anyone
aware of what would cause these?
FAQ. This is normal and does not hurt anything.
On 3/24/06, Derrick MacPherson [EMAIL PROTECTED] wrote:
I'm seeing this in the system log:
Mar 24 17:02:26 kernel: arp_rtrequest: bad gateway x.x.x.x (!AF_LINK)
Mar 24 17:02:27 kernel: arp_rtrequest: bad gateway y.y.y.y (!AF_LINK)
The
Sorry Scott I should've looked., thnx.
On Fri, 2006-03-24 at 20:49 -0500, Scott Ullrich wrote:
FAQ. This is normal and does not hurt anything.
On 3/24/06, Derrick MacPherson [EMAIL PROTECTED] wrote:
I'm seeing this in the system log:
Mar 24 17:02:26 kernel: arp_rtrequest: bad gateway
Well I got most of my problems of last week sorted - a couple of configuration
errors is all it takes to get things badly confused.
I am now left with some 'real' errors
I have two boxes in parallel, running with Carp used to service 6 addresses in
total - 3 on the WAN interface and the
On 3/23/06, Peter Curran [EMAIL PROTECTED] wrote:
Well I got most of my problems of last week sorted - a couple of configuration
errors is all it takes to get things badly confused.
I am now left with some 'real' errors
I have two boxes in parallel, running with Carp used to service 6
Hi Scott
On Thursday 23 March 2006 23:00, Scott Ullrich wrote:
I have two boxes in parallel, running with Carp used to service 6
addresses in total - 3 on the WAN interface and the remaining 3 spread
between 3 internal interfaces. All seems to work OK - when I check the
Carp status on
Hello I'm struggling with configuring carp, I have tried to download the carp
cluster tutorial from several of the mirrors. I can't download it.
Has anyone a carp cluster howto doc they can send me?
Thanks, Simon.
It´s unselected. I disabled block private networks... The weird stuff is show
Hi Simon, it don´t need direct download... It´s a flash movie! Do you only need a browser with flash plugin! Got Firefox? ;)Regards,Luiz Vaz
Message-
From: Jure Pecar [mailto:[EMAIL PROTECTED]
Sent: Tuesday, February 07, 2006 7:36 PM
To: support@pfsense.com
Subject: [pfSense Support] carp, still ...
I'm now running 2-5-06 snapshot and I'm still confused about
carp. Either I understand it tottaly wrong or something is
seriously broken
[mailto:[EMAIL PROTECTED]
Sent: Tuesday, February 07, 2006 7:36 PM
To: support@pfsense.com
Subject: [pfSense Support] carp, still ...
I'm now running 2-5-06 snapshot and I'm still confused about
carp. Either I understand it tottaly wrong or something is
seriously broken.
I
-
From: Jure Pecar [mailto:[EMAIL PROTECTED]
Sent: Tuesday, February 07, 2006 7:36 PM
To: support@pfsense.com
Subject: [pfSense Support] carp, still ...
I'm now running 2-5-06 snapshot and I'm still confused about
carp. Either I understand it tottaly wrong or something is
seriously
-Original Message-
From: Jure Pecar [mailto:[EMAIL PROTECTED]
Sent: Tuesday, February 07, 2006 7:36 PM
To: support@pfsense.com
Subject: [pfSense Support] carp, still ...
I'm now running 2-5-06 snapshot and I'm still confused about
carp. Either I understand it tottaly wrong or something
at your
interfaces? CARP and DHCP won't work together.
Holger
-Original Message-
From: Jure Pecar [mailto:[EMAIL PROTECTED]
Sent: Tuesday, February 07, 2006 7:36 PM
To: support@pfsense.com
Subject: [pfSense Support] carp, still ...
I'm now running 2-5-06 snapshot
, 2006 7:36 PM
To: support@pfsense.com
Subject: [pfSense Support] carp, still ...
I'm now running 2-5-06 snapshot and I'm still confused about
carp. Either I understand it tottaly wrong or something is
seriously broken.
I have two machines and I want to have the more powerful one
To: support@pfsense.com
Subject: [pfSense Support] carp, still ...
I'm now running 2-5-06 snapshot and I'm still confused about
carp. Either I understand it tottaly wrong or something is
seriously broken.
I have two machines and I want to have the more powerful one
as carp
I'm now running 2-5-06 snapshot and I'm still confused about carp. Either I
understand it tottaly wrong or something is seriously broken.
I have two machines and I want to have the more powerful one as carp master.
The weaker one should be taking over only when master goes down. As I
To: support@pfsense.com
Subject: [pfSense Support] carp, still ...
I'm now running 2-5-06 snapshot and I'm still confused about
carp. Either I understand it tottaly wrong or something is
seriously broken.
I have two machines and I want to have the more powerful one
as carp master
This bug was fixed 2 days ago. Set preemption on your backup
firewall in CARP settings.
On 1/25/06, Jure Pečar [EMAIL PROTECTED] wrote:
Hi all,
I figured out my way with vlans and am now looking at carp.
On 1.0beta1, /tmp/carp.sh looks like this:
# cat /tmp/carp.sh
/sbin/ifconfig carp0
Hi all,
I figured out my way with vlans and am now looking at carp.
On 1.0beta1, /tmp/carp.sh looks like this:
# cat /tmp/carp.sh
/sbin/ifconfig carp0 ip/mask broadcast bcast vhid 1 advskew 200 pass wan
/sbin/ifconfig carp0 up/sbin/ifconfig carp1 ip/mask broadcast bcast vhid 2
advskew 200
I have my two machines set up. (Thanks Scott for the kernel patch).
I followed the CARP Failover tutorial to setup failover. I have a
couple of problems. I'll name the two machines A and B. A is supposed
to be the primary and B the backup.
First, B always grabs master on the carp
I've been noticing interesting CARP problems here too. Mainly the
state is INIT. I'm looking into the problem. I plan on moving back
to RELENG_6 (we're now on RELENG_6_0) to see if it solves the issues.
On 11/9/05, Lynn A. Roth [EMAIL PROTECTED] wrote:
I have my two machines set up. (Thanks
CARP is not compatible with PPPoE currently. It currnently only
works correctly with static addresses.
Scott
On 10/4/05, alan walters [EMAIL PROTECTED] wrote:
Running carp on two wrap boards on 0.86. when failing over from master to
backup all works fine. (my test is a ptpp connection)
Now working. Thanks!
-Original Message-
From: Scott Ullrich [mailto:[EMAIL PROTECTED]
Sent: Thursday, September 29, 2005 5:17 PM
To: support@pfsense.com
Subject: Re: [pfSense Support] CARP Master/Backup goes to INIT update
Ahh yes. The DISABLE/ENABLE button needs to be updated. Good
Ahh yes. The DISABLE/ENABLE button needs to be updated. Good catch.
I'll fix in a bit.
Scott
On 9/29/05, Frimmel, Ivan (ISS South Africa) [EMAIL PROTECTED] wrote:
HI
I just did another update_file.sh .. and re-setup CARP. Doing a Reboot
brings CARP up into Master as expected ;) (
:22 PM
To: support@pfsense.com
Subject: [pfSense Support] CARP
Is CARP stable and working good for people? Is it possible to have two
1.5mb T1 lines from different ISP's each hooking into a pfsense box
running CARP for fail-over? Also would the Soekris net4801's handle this
task? I just need
to be UP when CARP wants to start?
Tx
Ivan.
-Original Message-
From: Scott Ullrich [mailto:[EMAIL PROTECTED]
Sent: 12 September 2005 05:43 PM
To: support@pfsense.com
Subject: Re: [pfSense Support] Carp Weirdness - Always reboots to INIT
On 9/12/05, Frimmel, Ivan (ISS South Africa) [EMAIL
if no
CARP server is up, if at least one CARP server is up then things work as
expected.
Ivan.
-Original Message-
From: Holger Bauer [mailto:[EMAIL PROTECTED]
Sent: 13 September 2005 02:50 PM
To: support@pfsense.com
Subject: AW: [pfSense Support] Carp Weirdness - Always reboots to INIT
CARP
CARP is very cool.
3 things ..
1) kill power on both routers .. 1 is setup with lower advert.
Freq than other. Power them up together. BOTH go into INIT mode always and the virtual
gateway doesnt get created. .Only way to fix this is to disable carp on Master
then enable .. it becomes
On 9/12/05, Frimmel, Ivan (ISS South Africa) [EMAIL PROTECTED] wrote:
1) kill power on both routers .. 1 is setup with lower advert. Freq than
other. Power them up together. BOTH go into INIT mode always and the virtual
gateway doesn't get created. .Only way to fix this is to disable carp on
OK, because I can't use private IP's on WAN, I victimize 3
official IPs and start the first real test of pfsense ;-)
I've an setup with 6 Interfaces (1 SYNC,1 LAN, 1 WLAN, 1 DMZ and
2 WAN). At this time 1 WAN and the WLAN interface are not in use.
I enabled CARP and defined few rules. The
I have 2 boxes at home, both on carp. Works fine. You sure your
outbound rules are setup correctly?
Scott
On 7/25/05, alan walters [EMAIL PROTECTED] wrote:
On version 0.70.8 I had sync working and backup lan operational when the
master was down.
On veriosn 0.71 the sync works
-Ursprüngliche Nachricht-
Von: alan walters [mailto:[EMAIL PROTECTED]
Gesendet: Dienstag, 19. Juli 2005 00:36
An: support@pfsense.com
Betreff: FW: [pfSense Support] carp array
I have reviewed the tutorial before, it looks good for outbound connections.
How would I manage
Hi,
1. config all your public IPs as CARP-IPs, so the pfsense will answer them on
wan
Sorry to ask, it is possible for me to do this for replacing IP Aliases?
currently i'm have to manually edit config.xml to include all those Public IP
that i have under shellcmd so that my WAN interfaces
Yikes...why aren't you using proxy arp? At any rate, carp will work
for that too - it'll be somewhat noisy, but'll work just fine. In
fact...what the hell I recommend it, there, I said it...;-P
--Bill
On 7/18/05, ijez [EMAIL PROTECTED] wrote:
Hi,
1. config all your public IPs as
201 - 261 of 261 matches
Mail list logo
