"I have configured "virtulas IPs" with CARP on OPNsense,
I disabled CARP by setting "Persistent maintenance mode"
I expected the IPs to stay inactive, but this failed:
On Reboot or link up of an interface the CARP IPs become "MASTER".
Code Select
root@opnsense:~ # ifconfig vtnet1
vtnet1: flags=8963<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> metric 0 mtu 1500
description: VLAN1 (opt3)
options=d00b8<VLAN_MTU,VLAN_HWTAGGING,JUMBO_MTU,VLAN_HWCSUM,VLAN_HWFILTER,VLAN_HWTSO,LINKSTATE>
ether xx:xx:xx:xx:xx:xx
inet 10.xxx.xxx.254 netmask 0xffffff00 broadcast 10.xxx.xxx.255
inet 10.xxx.xxx.1 netmask 0xffffff00 broadcast 10.xxx.xxx.255 vhid 1
carp: MASTER vhid 1 advbase 1 advskew 0
media: Ethernet autoselect (10Gbase-T <full-duplex>)
status: active
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
Logfile:
Code Select
2024-03-16T07:08:21+01:00 opnsense opnsense 83287 - [meta sequenceId="206"] /usr/local/etc/rc.syshook.d/carp/20-openvpn: Carp cluster member "Gateway XXX (10.xxx.xxx.1) (1@vtnet1)" has resumed the state "BACKUP" for vhid 1
2024-03-16T07:08:21+01:00 opnsense opnsense 83287 - [meta sequenceId="207"] /usr/local/etc/rc.syshook.d/carp/20-openvpn: Resyncing OpenVPN instances for interface Gateway XXX (10.xxx.xxx.1).
2024-03-16T07:08:24+01:00 opnsense opnsense 98506 - [meta sequenceId="297"] /usr/local/etc/rc.syshook.d/carp/20-openvpn: Carp cluster member "Gateway XXX (10.xxx.xxx.1) (1@vtnet1)" has resumed the state "MASTER" for vhid 1
I have 2 OpenVPN Server and 1 OpenVPN client configured but all are disabled and not runnig.
My Problem:
How can I disable all CARP IPs until the opnsense configuration is completed?
