Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
19.7 Legacy Series
»
Gateway monitor broken on CARP WAN with single public IP
« previous
next »
Print
Pages: [
1
]
Author
Topic: Gateway monitor broken on CARP WAN with single public IP (Read 11221 times)
samp
Newbie
Posts: 1
Karma: 0
Gateway monitor broken on CARP WAN with single public IP
«
on:
March 16, 2020, 06:01:03 am »
I have a single WAN public IP which is set as the CARP VIP address in a 2-member cluster. The WAN interface on both members has a private IP of 10.0.1.1 and 10.0.1.2 respectively. CARP seems to be set up and working fine, but I have to disable gateway monitoring for the WAN.
I assume dpinger which is used for gateway monitoring is sending pings using the WAN interface private IP instead of the VIP which would explain why this is failing. Is there any way to get dpinger to send from the VIP address instead? Is this a known issue?
Thanks,
Sam
Logged
mimugmail
Hero Member
Posts: 6766
Karma: 494
Re: Gateway monitor broken on CARP WAN with single public IP
«
Reply #1 on:
March 16, 2020, 07:36:41 am »
It's a known limitation of the carp design itself. The Firewall would also reply to traceroute with the private IP.
Logged
WWW:
www.routerperformance.net
Support plans:
https://www.max-it.de/en/it-services/opnsense/
Commercial Plugins (German):
https://opnsense.max-it.de/
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
19.7 Legacy Series
»
Gateway monitor broken on CARP WAN with single public IP