CARP changes its status from BACKUP to INIT and returns from INIT to backup

hjose · September 24, 2024, 02:31:25 PM

I have two Opnsense firewalls version 24.7.2 with HA active with cron applied to run the "HA update and reconfigure backup" command at 3am.

There is a carp configured on the WAN and the Suricata IPS/IDS services also applied to the WAN interface.

The problem that occurs is when the cron runs and applies the Suricata restart, the wan interface goes down/up at which point the CARP changes its status from BACKUP to INIT and returns from INIT to backup.

I read so many article but can´t find a solution...

bimbar · September 24, 2024, 04:44:40 PM

I had suricata running with HA for a while, but it also did not play that well with carp. It did work though, it only flapped for 10 minutes after a change in HA.

Advice: disable suricata.

hjose · September 24, 2024, 06:15:09 PM

Thank you for your feedback.

I´ll check,
I´ve read so many articles and I don´t see a solution, it even looks like a bug or incompatibility.

Thank you.

erick.batista · October 02, 2024, 03:04:15 PM

Hello community.

I have the same problem and event that was reported by my colleague.

Does anyone have any idea what it could be?

CARP changes its status from BACKUP to INIT and returns from INIT to backup

hjose

September 24, 2024, 02:31:25 PM

bimbar

September 24, 2024, 04:44:40 PM #1

hjose

September 24, 2024, 06:15:09 PM #2

erick.batista

October 02, 2024, 03:04:15 PM #3