DHCP Failover Troubleshooting

[henningkessler]

Hello,

I have an installation where I run DHCP with failover on 5 different Interfaces. On three of them everything is running as it should but on the other two DHCP state is set on recover on both sides with the other peer set as unknown-state. As for troubleshooting I did everything which is listed here https://docs.netgate.com/pfsense/en/latest/highavailability/dhcp-failover-troubleshooting.html but still no luck.

Has someone else any other tips or instructions I could try?

Regards

Henning

[henningkessler]

Okay I investigated the issue a bit further.
I run on the working interfaces on the secondary a successful:

Code Select Expand

nc -v -s SECONDARY-IP PIMARY-IP 519
the same commands fails on the non-working interfaces. A

Code Select Expand

netstat -nl |grep .519
on the primary and secondary shows only established connections on the working interfaces and SYN_SENTs on the secondary on the non-working interfaces. A packet-capture on the primary non-working interfaces on port 519 show a lot of retransmissions.

For me it looks like that the primary is not listening on port 519 on the non-working interfaces for whatever reasons.

Any idea that could help me with this?

Regards

Henning

[henningkessler]

In the end the whole problem was my own mistake :-[. On one interface no CARP was configured and on the other there was a CARP configuration error. Because of these errors DHCP was configured on both firewalls as secondary one these specific interfaces...GRRRRRR