[RESOLVED] HA : CARP and Virtual IP

Started by fcalleja, November 16, 2024, 11:16:13 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
November 16, 2024, 11:16:13 AM Last Edit: November 16, 2024, 01:26:11 PM by fcalleja
Hi,
I want to setup HA on my existing FW01 using OPNSENSE 24.7, using a second FW02.

I have setup CARP for the OUTSIDE interface and reassign IP of FW01 and FW02. But on this OUTSIDE interface, I also have an IP Alias configured.

I have a /29 network and configured it as :
.1 and .2 IP Alias to redirect to specific servers with one-to-one NAT or Port forwarding NAT
.3 FW01
.4 FW02
.5 CARP IP
.6 my provider GW

In normal operation (when both FW are active) what will happen to my IP aliases (.1 and .2) operation ? Which FW will do the gratuitous ARP of those IP, and which one will serve the outside requests from Internet.

Same question when FW01 or FW02 will go down ?

Thanks for help in understanding how it works.
Franck
November 16, 2024, 12:47:58 PM #1
You need to assign the same VHDI as your CARP address to those two aliases. Then they will switch to the active/working node just like the CARP one does.
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do. (Isaac Asimov)
November 16, 2024, 01:09:41 PM #2
Hi,
Great. It seems to be functional.

In the dashboard, I got now the boths virtual IP associated with the outside address and its MASTER/BACKUP status.

Thanks.
Print
Go Up Pages1
User actions