Print Page - [RESOLVED] HA : CARP and Virtual IP

Title: [RESOLVED] HA : CARP and Virtual IP
Post by: fcalleja on November 16, 2024, 11:16:13 AM

Hi,
I want to setup HA on my existing FW01 using OPNSENSE 24.7, using a second FW02.

I have setup CARP for the OUTSIDE interface and reassign IP of FW01 and FW02. But on this OUTSIDE interface, I also have an IP Alias configured.

I have a /29 network and configured it as :
.1 and .2 IP Alias to redirect to specific servers with one-to-one NAT or Port forwarding NAT
.3 FW01
.4 FW02
.5 CARP IP
.6 my provider GW

In normal operation (when both FW are active) what will happen to my IP aliases (.1 and .2) operation ? Which FW will do the gratuitous ARP of those IP, and which one will serve the outside requests from Internet.

Same question when FW01 or FW02 will go down ?

Thanks for help in understanding how it works.
Franck

Title: Re: HA : CARP and Virtual IP
Post by: Patrick M. Hausen on November 16, 2024, 12:47:58 PM

You need to assign the same VHDI as your CARP address to those two aliases. Then they will switch to the active/working node just like the CARP one does.

Title: Re: HA : CARP and Virtual IP
Post by: fcalleja on November 16, 2024, 01:09:41 PM

Hi,
Great. It seems to be functional.

In the dashboard, I got now the boths virtual IP associated with the outside address and its MASTER/BACKUP status.

Thanks.

OPNsense Forum

English Forums => General Discussion => Topic started by: fcalleja on November 16, 2024, 11:16:13 AM