OPNsense Forum
Archive => 21.1 Legacy Series => Topic started by: dp on October 13, 2021, 11:19:31 pm
-
Dazes and confused here.
I am on 21.1.4 with an HA setup. I added a NAT today and applied it to the active firewall. Then did a sync to the passive. Then one of our websites went down. I did a fail over to the passive and it came back up. Weird part is even after a reboot of the active it still blocks traffic to the web server. Swap to the passive unit and site is back online. Nothing in the logs stands out. I did have an issue with GEOIP as it appears the zip file is bigger now but I just increased the Max Table Entry size and it is happy again.
The configurations show sync so I am completely puzzled why it works on one and not the other even after a reboot. These are running on physical servers with two 1 Gig interfaces in a LAGG for WAN and two 1 Gig interface in a LAGG for LAN.
I have not updated yet as we are building new servers on new hardware with 10 Gig interfaces to replace the older hardware.
Has anyone ever seen anything like this? I am even a loss of what to search for in the forum. Will pull any logs you want to see.
Thanks.