Text only | Text with Images

OPNsense Forum

English Forums => High availability => Topic started by: mmaridev on September 24, 2020, 05:46:37 PM

Title: Sync interfaces changes in OPNSense HA
Post by: mmaridev on September 24, 2020, 05:46:37 PM
Hi,

we were trying to setup HA in OPNSense but encountered the following issue: when we add a new interface to the master (e.g. a VLAN), which occurs often, the same interface isn't created in the slave. Therefore,
1. the slave can't handle the new interface if necessary;
2. if you create a new interface in the slave in an ordred that is not congruent with the master (opt3 -> opt2) you'll get many troubles.

Any way this can be fixed? Top would be that when we create a new VLAN in the master this is created in the slave too.

Thanks,
Marco
Title: Re: Sync interfaces changes in OPNSense HA
Post by: mimugmail on September 24, 2020, 05:49:28 PM
You have to create them in the correct order in both, no other chance
Title: Re: Sync interfaces changes in OPNSense HA
Post by: mmaridev on September 28, 2020, 06:22:01 PM
May we convert this into a feature request?
Title: Re: Sync interfaces changes in OPNSense HA
Post by: mimugmail on September 29, 2020, 06:02:33 AM
I rather think this is a documentation issue
Title: Re: Sync interfaces changes in OPNSense HA
Post by: sorano on September 29, 2020, 01:37:53 PM
Yeah. It seems kinda self explanatory that the firewalls interfaces need to be configured the same in order to be a HA-pair.
Title: Re: Sync interfaces changes in OPNSense HA
Post by: mimugmail on September 29, 2020, 03:34:43 PM
https://docs.opnsense.org/manual/how-tos/carp.html#setup-interfaces-basic-firewall-rules
Title: Re: Sync interfaces changes in OPNSense HA
Post by: mmaridev on October 07, 2020, 02:41:46 PM
Okay thanks but this would be anyway a cool feature though. Maybe just for the "virtual" interfaces? Some proprietary firewall has this feature.
Text only | Text with Images