CARP Persistent maintenance mode

[dinoex]

I have configured "virtulas IPs" with CARP on OPNsense,
I disabled CARP by setting "Persistent maintenance mode"

I expected the IPs to stay inactive, but this failed:

On Reboot or link up of an interface the CARP IPs become "MASTER".

Code Select Expand

root@opnsense:~ # ifconfig vtnet1
vtnet1: flags=8963<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> metric 0 mtu 1500
        description: VLAN1 (opt3)
        options=d00b8<VLAN_MTU,VLAN_HWTAGGING,JUMBO_MTU,VLAN_HWCSUM,VLAN_HWFILTER,VLAN_HWTSO,LINKSTATE>
        ether xx:xx:xx:xx:xx:xx
        inet 10.xxx.xxx.254 netmask 0xffffff00 broadcast 10.xxx.xxx.255
        inet 10.xxx.xxx.1 netmask 0xffffff00 broadcast 10.xxx.xxx.255 vhid 1
        carp: MASTER vhid 1 advbase 1 advskew 0
        media: Ethernet autoselect (10Gbase-T <full-duplex>)
        status: active
        nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>



Logfile:

Code Select Expand


2024-03-16T07:08:21+01:00 opnsense opnsense 83287 - [meta sequenceId="206"] /usr/local/etc/rc.syshook.d/carp/20-openvpn: Carp cluster member "Gateway XXX (10.xxx.xxx.1) (1@vtnet1)" has resumed the state "BACKUP" for vhid 1
2024-03-16T07:08:21+01:00 opnsense opnsense 83287 - [meta sequenceId="207"] /usr/local/etc/rc.syshook.d/carp/20-openvpn: Resyncing OpenVPN instances for interface Gateway XXX (10.xxx.xxx.1).
2024-03-16T07:08:24+01:00 opnsense opnsense 98506 - [meta sequenceId="297"] /usr/local/etc/rc.syshook.d/carp/20-openvpn: Carp cluster member "Gateway XXX (10.xxx.xxx.1) (1@vtnet1)" has resumed the state "MASTER" for vhid 1


I have 2 OpenVPN Server and 1 OpenVPN client configured but all are disabled and not runnig.


My Problem:
How can I disable all CARP IPs until the opnsense configuration is completed?

[mimugmail]

Remove them or diasble carp (does not survive reboot)