ha sync - firewall rule sync after upgrade not working

[spark5]

hi guys,
we are new with opnsense, came from pfsense,
i setup an ha cluster with 2 nodes and 2 wan links, wan failover.

everything is running fine.
now i upgraded to the last version 20.X.
after that the sync via xmlrpc is not running automatically. i change somethin on the master and nothing happens.
if i restart configd.py, the changes are done on the other node, so this is generally working.

i can see nothing in the logfiles:
Mar 3 10:32:46 vm-prod-firewall-01.vlan.r-m.de configd.py: [76fdc2a3-da19-46e8-b1ff-a27bc1a73996] request osfp
Mar 3 10:32:46 vm-prod-firewall-01.vlan.r-m.de configd.py: [7e095e9a-4908-4006-b84d-5931b87b3011] Syncing firewall load
Mar 3 10:32:46 vm-prod-firewall-01.vlan.r-m.de configd.py: [cea7058c-fe31-4d75-ba58-5bd7f717c5e9] request pf rules

also tcpdump does not show any traffic.

the only warning in the log is see is:
configd.py: encode idna: unable to decode XXX, return source
XXX are a group of alias. these are working and i saw this message also on 19.X.

can you please help me, where i can have a look. feeling blind :)

thanks,
ronny

[spark5]

hi, i found: https://forum.opnsense.org/index.php?topic=15906.msg72837#msg72837 is auto sync not working anymore?

[spark5]

https://opnsense.org/about/road-map/
HASync only on command (legacy cleanup)

really?

[AdSchellevis]

yes, as usual, you can find more background about choices we have made in the past on GitHub https://github.com/opnsense/core/issues/3635

Best regards,

Ad

[spark5]

ok, you should put this into the release note

thanks

[AdSchellevis]

yes, we should and we did.... https://github.com/opnsense/changelog/blob/master/doc/20.1/20.1.r1#L29