Print Page - CARP changes its status from BACKUP to INIT and returns from INIT to backup

Title: CARP changes its status from BACKUP to INIT and returns from INIT to backup
Post by: hjose on September 24, 2024, 02:31:25 PM

I have two Opnsense firewalls version 24.7.2 with HA active with cron applied to run the "HA update and reconfigure backup" command at 3am.

There is a carp configured on the WAN and the Suricata IPS/IDS services also applied to the WAN interface.

The problem that occurs is when the cron runs and applies the Suricata restart, the wan interface goes down/up at which point the CARP changes its status from BACKUP to INIT and returns from INIT to backup.

I read so many article but can´t find a solution...

Title: Re: CARP changes its status from BACKUP to INIT and returns from INIT to backup
Post by: bimbar on September 24, 2024, 04:44:40 PM

I had suricata running with HA for a while, but it also did not play that well with carp. It did work though, it only flapped for 10 minutes after a change in HA.

Advice: disable suricata.

Title: Re: CARP changes its status from BACKUP to INIT and returns from INIT to backup
Post by: hjose on September 24, 2024, 06:15:09 PM

Thank you for your feedback.

I´ll check,
I´ve read so many articles and I don´t see a solution, it even looks like a bug or incompatibility.

Thank you.

Title: Re: CARP changes its status from BACKUP to INIT and returns from INIT to backup
Post by: erick.batista on October 02, 2024, 03:04:15 PM

Hello community.

I have the same problem and event that was reported by my colleague.

Does anyone have any idea what it could be?

OPNsense Forum

English Forums => High availability => Topic started by: hjose on September 24, 2024, 02:31:25 PM