Show Posts
1
General Discussion / Re: Transparent Filtering Bridge + CARP/pfsync for HA?
« on: July 10, 2023, 10:13:11 am »
Hello,
I have same use case. Have you been abled to test it?
I think it is not possible to make HA on Bridge. The reason is because CARP is working on IP protocol which is above L2 traffic enabled on both (LAN and WAN) Bridge interfaces. I guess you can attach a CARP virtual interface to the bridge interface and make HA on the administration Bridge interface. But if you have both firewalls connected to your core routers you might start to get some routing loop (spanning tree)
I would love to hear from anyone that has been abled to make it work.
BR,
Alfonso
I have same use case. Have you been abled to test it?
I think it is not possible to make HA on Bridge. The reason is because CARP is working on IP protocol which is above L2 traffic enabled on both (LAN and WAN) Bridge interfaces. I guess you can attach a CARP virtual interface to the bridge interface and make HA on the administration Bridge interface. But if you have both firewalls connected to your core routers you might start to get some routing loop (spanning tree)
I would love to hear from anyone that has been abled to make it work.
BR,
Alfonso