"
Did you ever arrive at a working solution? I'm seeing this behavior. Evidently, the HA sync process copies over all peers from the primary, including their enabled state, and the backup attempts to bring up the tunnels with peer endpoint defined, regardless of its current CARP state. Do you think it's just lack of implementation?
