Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
High availability
»
Strange behavior, unable to get CARP to work properly
« previous
next »
Print
Pages: [
1
]
Author
Topic: Strange behavior, unable to get CARP to work properly (Read 921 times)
panachoi
Newbie
Posts: 2
Karma: 0
Strange behavior, unable to get CARP to work properly
«
on:
June 13, 2024, 03:56:50 pm »
I've read through the forums, and although I've seen similar issues, none quite matches what I'm experiencing. I'm really at a loss to explain this behavior.
I've got a cluster that has 2 10G Intel (ix) interfaces, with various vlans on them. I'm actually only seeing issues on ONE of the vlans on ONE of the interfaces, all of the other vlans on both interfaces work as expected. Needless to say this is causing issues with CARP.
Brief description:
On the ix0_vlanX interface, the firewalls cannot seem to ping each other. On the other (ix0_vlanY), ping works fine, each firewall can ping the other, and their shared CARP address. I say seem because on the "broken" vlan interface I can see the request and reply packets, with tcpdump, but for some reason ping reports 100% packet loss. From a different device on the same vlan(s), I can ping both firewalls and their shared CARP address.
igmp snooping is off on the switchports
only tagged vlans are on the switch ports (the ix0 interface has no address)
I'd be happy for any input as to what might be amiss, because I'm out of ideas at this point.
Logged
Wolfspyre
Newbie
Posts: 42
Karma: 2
Re: Strange behavior, unable to get CARP to work properly
«
Reply #1 on:
July 12, 2024, 03:36:55 am »
have you tried changing the native vlan id on the switchports to see if that is related to the problem?
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
High availability
»
Strange behavior, unable to get CARP to work properly