I have two Opnsense firewalls version 24.7.2 with HA active with cron applied to run the "HA update and reconfigure backup" command at 3am.
There is a carp configured on the WAN and the Suricata IPS/IDS services also applied to the WAN interface.
The problem that occurs is when the cron runs and applies the Suricata restart, the wan interface goes down/up at which point the CARP changes its status from BACKUP to INIT and returns from INIT to backup.
I read so many article but can´t find a solution...
I had suricata running with HA for a while, but it also did not play that well with carp. It did work though, it only flapped for 10 minutes after a change in HA.
Advice: disable suricata.
Thank you for your feedback.
I´ll check,
I´ve read so many articles and I don´t see a solution, it even looks like a bug or incompatibility.
Thank you.
Hello community.
I have the same problem and event that was reported by my colleague.
Does anyone have any idea what it could be?