Configuration Not Syncing Automatically from Primary to Secondary OPNsense

Started by Shivang Pithadiya, May 14, 2025, 12:32:47 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
May 14, 2025, 12:32:47 PM
Hello OPNsense Team,

I have configured two OPNsense firewalls in a high availability (HA) setup — one as the primary and the other as the secondary. The HA setup appears to be working correctly.

However, I noticed that configuration changes made on the primary firewall (e.g., changes to services or settings) are not automatically syncing to the secondary firewall. The synchronization only occurs when I manually click the "Synchronize config to backup" button under System > High Availability > Status.

I would like the configuration to sync automatically without requiring manual intervention. Could you please guide me on how to enable automatic synchronization?

My current OPNsense version is 24.7.12.

Thank you
May 14, 2025, 12:54:34 PM #1
The behaviour you observe is intentional. You can set up an hourly cron job if you prefer, but instant synchronisation of every change is not possible.

Reason being that you will not lock yourself out of your secondary firewall if you make a fatal mistake on the primary.
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do. (Isaac Asimov)
May 14, 2025, 01:00:15 PM #2
Hello Patrick M. Hausen

Thank you for your valuable reply

so that means that is not possible if i made some changes in primary firewall like ubound DNS service or anything else that not reflect automatically in secondary firewall?

i need to use cron if i want frequently sync right?
May 14, 2025, 01:08:34 PM #3
Right. Or sync manually - it will become a habit sooner or later. 😉
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do. (Isaac Asimov)
Print
Go Up Pages1
User actions