Networking - CARP interfaces
Daniel Gerzo
danger at freebsd.org
Wed Jun 15 11:42:18 UTC 2011
On Tue, 14 Jun 2011 17:01:21 -0400, Steve Polyack wrote:
>>>>
>>>> I'll just have to adapt and ensure they have the same IP addresses
>>>> then.
>>> I have a suspicion that the important part may be the number of IP
>>> addresses on the CARP interface. If CARP sends an advertisement from
>>> each IP alias on a CARP interface, then I think that would explain
>>> what you are seeing - and also possibly give you a workaround by
>>> adding two more bogus IPs on your primary datacenter firewalls (where
>>> IPs W and Z are normally missing).
>>>
>>> - Steve
>>>
>> I'll give it a try, although I think in a scenario where the carp
>> interfaces have the same number of IPs and these IPs differ, both
>> interfaces will claim mastership.
>>
>> Will post results.
>
> Now that I look at the spec, it looks like both the count and the
> addresses themselves are provided in VRRP packets. CARP likely does
> the same. I can't speak for whether these things are considered
> along
> with the VHID and password, but it's worth a shot. I think you are
> correct, though.
CARP does the same and should you have different IP addresses on the
master/backup machines they will misbehave.
I think the way to solve this issue is to split the two other IP
addresses onto a separate carpN interface...
--
Kind regards
Daniel
More information about the freebsd-stable
mailing list