Skip site navigation (1)Skip section navigation (2) 
Date:      Wed, 29 Apr 2009 23:53:21 +0200
From:      Sebastiaan van Erk <sebster@sebster.com>
To:        Nikos Vassiliadis <nvass@freemail.gr>
Cc:        FreeBSD Questions Mailing List <freebsd-questions@freebsd.org>
Subject:   Re: CARP & bridge
Message-ID:  <49F8CC51.2030203@sebster.com>
In-Reply-To: <49F89FE1.6070807@freemail.gr>
References:  <49F81FF2.3040302@sebster.com>	<1240999037.2645.3.camel@frodon.be-bif.ulb.ac.be> <49F8269E.2010201@sebster.com> <49F89FE1.6070807@freemail.gr>
next in thread | previous in thread | raw e-mail | index | archive | help 

[-- Attachment #1 --]
Hi,

Nikos Vassiliadis wrote:
> Sebastiaan van Erk wrote:
>> Julien Cigar wrote:
>>>
>>> Maybe you've to do ARP Proxy on one side ? Try to add an ARP entry in
>>> the ARP table with arp (arp -s 1.2.3.4 MAC foo) ..
>>
>> Thanks for the suggestion.
>>
>> Ok, static arp works: that is, if I take the carp1 mac address and add 
>> it to the arp table using:
>>
>>  arp -s 10.0.80.74 00:00:5e:00:01:02 pub
>>
>> The ping starts to work. I'm still a bit confused why I have to do 
>> this though, because I can ping the non-shared IP 10.0.80.77 from the 
>> VPN client (via tap0) without any static arp, and I can ping the 
>> shared VIP (10.0.80.74) from clients on the physical network (em1) as 
>> well without any static arp. It's only when the ping it has to cross 
>> the bridge that it's an issue.
> 
> Does it make any difference if you set the IP address on the bridge0
> iface and not on the physical one?
> 
> I recall that the recommended setup is to use IP addresses on
> the bridge interface and leave the members of the bridge IPless.
> 
> Nikos

Thanks for the suggestion. I tried it, but unfortunately the carp device 
never leaves the INIT state when I put the ip on the bridge. :-( I did 
find some similar problem here:

http://www.freebsd.org/cgi/query-pr.cgi?pr=125816

Regards,
Sebastiaan

[-- Attachment #2 --]
0	*H
010	+0	*H
	Q00lS|
6$1-~j0
	*H
0b10	UZA1%0#U
Thawte Consulting (Pty) Ltd.1,0*U#Thawte Personal Freemail Issuing CA0
080630135157Z
090630135157Z0h10Uvan Erk10U*
Sebastiaan10USebastiaan van Erk1"0 	*H
	sebster@sebster.com0"0
	*H
0
Va\bEnݚa<M8ʄ^tv>x73bohi2oqS_¶Bm^p*I	x"9pt!jar#)n)^?'z<).+Ѐ4igR'UP*\Ւ,?.;?fBܯTzM IDվCK*3Yŧ
mcaztxʐsq/00.0U0sebster@sebster.com0U00
	*H
KT4W6ӽq]
tS` %f1G:HbzJj$EjE'JV~-VbVnJZE/`@@04!+T:c	پf`$Z=1#|oG[OBRG00lS|
6$1-~j0
	*H
0b10	UZA1%0#U
Thawte Consulting (Pty) Ltd.1,0*U#Thawte Personal Freemail Issuing CA0
080630135157Z
090630135157Z0h10Uvan Erk10U*
Sebastiaan10USebastiaan van Erk1"0 	*H
	sebster@sebster.com0"0
	*H
0
Va\bEnݚa<M8ʄ^tv>x73bohi2oqS_¶Bm^p*I	x"9pt!jar#)n)^?'z<).+Ѐ4igR'UP*\Ւ,?.;?fBܯTzM IDվCK*3Yŧ
mcaztxʐsq/00.0U0sebster@sebster.com0U00
	*H
KT4W6ӽq]
tS` %f1G:HbzJj$EjE'JV~-VbVnJZE/`@@04!+T:c	پf`$Z=1#|oG[OBRG0?0
0
	*H
010	UZA10UWestern Cape10U	Cape Town10U
Thawte Consulting1(0&UCertification Services Division1$0"UThawte Personal Freemail CA1+0)	*H
	personal-freemail@thawte.com0
030717000000Z
130716235959Z0b10	UZA1%0#U
Thawte Consulting (Pty) Ltd.1,0*U#Thawte Personal Freemail Issuing CA00
	*H
0Ħ<UsUNʙZhup[v:aQP
0cZ,p+Z?qV˯<6$*+w=+>@dקe*TH<a@dr`00U00CU<0:08642http://crl.thawte.com/ThawtePersonalFreemailCA.crl0U0)U"0 010UPrivateLabel2-1380
	*H
HP.
fgCL!6-6/P p<ab:~t%Pb'qW%ݩ9 Oe_N4[5MwV!x!5$F]_eO1q0m0v0b10	UZA1%0#U
Thawte Consulting (Pty) Ltd.1,0*U#Thawte Personal Freemail Issuing CAS|
6$1-~j0	+0	*H
	1	*H
0	*H
	1
090429215321Z0#	*H
	1hg)Pay\vw[0_	*H
	1R0P0	`He0
*H
0*H
0
*H
@0+0
*H
(0	+71x0v0b10	UZA1%0#U
Thawte Consulting (Pty) Ltd.1,0*U#Thawte Personal Freemail Issuing CAS|
6$1-~j0*H
	1xv0b10	UZA1%0#U
Thawte Consulting (Pty) Ltd.1,0*U#Thawte Personal Freemail Issuing CAS|
6$1-~j0
	*H
Hȵ`q@yG9X\oj>x]C|3R\1-8ngCJ'8SŤԃL\áq=0GExxs\Џ9Xg]@ܳ t.V1Ƹܚ9
Ă;/;k˅K`*rgEUB;daMPHL=|Ay0QkiqnqϛW
O

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?49F8CC51.2030203>