OpenSens HA Sync Interface

[deathnote]

yes i creat it !!

i askn only one qvestion whot i need to writen in  Failover peer IP:

if i writen the Carp ip, DHCP Dont work
if i writen the Sync ip, DHCP Dont work

[Patrick M. Hausen]

You write the IP of the interface of the backup node in that particular VLAN where you try to setup DHCP. That's how it is in the docs.

[deathnote]

Dont Uderstud ....

i have

Lan ip Master : 192.168.200.1
Lan ip Slave: 192.168.200.2

Sync ip Master: 10.50.50.1
Sync ip Slave: 10.50.50.2

Vlan231 ip Master: 192.168.231.10
Vlan231 ip Slave: 192.168.231.10


Whot i must writen in Failover peer IP on DHCP Vlan231.

I real cant understud whot u tray me sad !

[Patrick M. Hausen]

Master and backup must have different IP addresses in VLAN 231 just like in LAN. Then you create an additional third CARP IP for VLAN 231 that your client systems will use.

In failover peer IP you write the IP of the backup.

Example:

VLAN 231 master: 192.168.231.1
VLAN 231 backup: 192.168.231.2
VLAN 231 CARP: 192.168.231.10

Failover peer: 192.168.231.2

[deathnote]

U mean i must for all Vlans creat Carp ip and Vlan's must have differet static ip In Master and Slave and last in DHCP i must put ip in  Failover peer IP Vlan's static ip from Slave ? ( like in Lan interfase )

I correct u undestud ?

[Patrick M. Hausen]

Yes, exactly. As I told from the beginning and as is in all the docs about CARP. A cluster always needs three IP addresses in each network where you want to have high availability. That is the case for OPNsense and for every comnercial firewall product I have used in the last 3 decades.

Ho come you are responsible for 2300 VLANs and have obviously no experience with that?

[deathnote]

I Creat all this Vlan in Dfl 870 and it dont have HA.

I Find opnsense and try creat Dhcp Ha Server. thats why i dont understud how correct it setting for HA.

If Its Singl divase it simpl creat )