OPNsense Forum

Archive => 17.1 Legacy Series => Topic started by: RainerR on March 01, 2017, 09:47:02 pm

Title: [SOLVED] CARP Cluster with VLAN Interfaces
Post by: RainerR on March 01, 2017, 09:47:02 pm

Hi all,

I've extended my OPNsense Zotac Nano CI323 box with an additional one and want to setup a Carp Cluster.

The basic configuration of a Carp Cluster is clear because I found the information in the how to's.
On my master box I've configured 7 VLANs and corresponding interfaces assigned to the VLANs.
As far as I understood the Carp Cluster I have to configure for each VLAN one virtual IP.

Am I right with this because otherwise I will have duplicate IPs on my VLANs?

Looking forward to get some feedback.

Rainer.

Title: Re: CARP Cluster with VLAN Interfaces
Post by: RainerR on March 02, 2017, 01:17:29 am

The Carp Cluster with my VLANs is up and running. :-)

The topic can be closed.

Title: Re: [SOLVED] CARP Cluster with VLAN Interfaces
Post by: franco on March 02, 2017, 08:13:27 am

Hi Rainer,

Did you have any trouble setting it up in the end? Anything you wish to share with others running into the same questions in the future?


Thank you,
Franco

Title: Re: [SOLVED] CARP Cluster with VLAN Interfaces
Post by: RainerR on March 02, 2017, 06:53:31 pm

Hi Franco,

I struggled a little bit at the beginning because as a have done the setup of the carp cluster I found out that my VLAN interfaces, the VLANs itself and all VLAN firewall rules from the master didn't appear on the backup node.

At this point I disabled the carp cluster and I've make a backup of my master configuration and restored this to the backup node. Then I changed the backup node name, IPs and so on. During this my backup node was only local connected to a notebook. I've done this because I don't want to make all the configuration again by hand.

After thinking of the further steps I created this topic.
In parallel I designed a configuration sheet for my VLAN configuration.

For my VLAN interfaces I configured on each node a dedicated IP address.
Then I created the corresponding virtual IPs in the Firewall-VirtualIs-Section.
For all IPs I created also a corresponding DNS record on the master box.

The next step was to connect the backup node again to my network.
Then I configured the Carp cluster again and done a reboot of each node.

After this my cluster was running fine without any problem.
I have now the exact VLAN configuration on each node.

I've done also some successfully failover tests by disconnecting the master/backup node from the network.

Best regards,
Rainer.

Title: Re: [SOLVED] CARP Cluster with VLAN Interfaces
Post by: franco on March 02, 2017, 09:06:06 pm

Hi Rainer,

Thank you for the details! :)


Cheers,
Franco