Messages

Hi Everyone,

I noticed that when my firewalls fail over for a update or when I force a CARP failover my RDP Session disconnects.
I have configured the State Sync on both Firewalls (see attached fw01-hasettings.png and fw02-hasettings.png) but the state counts on the secondary do not match the primary by a long shot! Around 70'000 states on the primary and around 30 states on the secondary.
The Firewalls Rules should be in place to allow the state sync.
  On both Firewalls -> Allow IPv4 PFSYNC Any Source Any Port to Any Dest Any Port

FYI; My secondary Firewall (fw02) is master of the CARP IPs at the moment, i don't know why, but the state sync problem occured before this problem. The state sync also has never worked previsously I think.
FYI2; The firewalls are connected via a direct lagg with 5 1g copper cables.

Best Regards,
niei

Hi Patrick

Thank you very much for your Help!
That solved it! i added HA to the listen Interfaces. =)

I wonder how it worked before, when i initially set up the synchronization.

Anyways, have a nice rest of the weekend.

Best Regards,
niei

Hi everyone,

I am having a problem with my HA Setup between two Sophos XG210 running OPNSense 24.7.9_1-amd64.
The CARP failover and configuration works great. However the Config/State Sync between the two firewall doesn't seem to work. When I try to "Perform synchronization" in System -> High Availability -> Settings, the page loads for about ~75 seconds and then displays the message "The backup firewall is not accessible or not configured.
" even though i can see traffic being allowed on the second firewall and the configuration (ip addresses and password) being correct.

Anyone experiencing the same strangeness?

See attached fw02-logs.png, fw01-config.png and fw02-config.png and fw02-rules.png

Regards,
niei