From owner-freebsd-net@freebsd.org Fri Sep 22 13:21:12 2017 Return-Path: Delivered-To: freebsd-net@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 9CBECE28BFC for ; Fri, 22 Sep 2017 13:21:12 +0000 (UTC) (envelope-from kpielorz_lst@tdx.co.uk) Received: from smtp.krpservers.com (smtp.krpservers.com [62.13.128.145]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "*.krpservers.com", Issuer "RapidSSL SHA256 CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 470B46BD79 for ; Fri, 22 Sep 2017 13:21:11 +0000 (UTC) (envelope-from kpielorz_lst@tdx.co.uk) Received: from [10.12.30.106] (host86-162-208-244.range86-162.btcentralplus.com [86.162.208.244]) (authenticated bits=0) by smtp.krpservers.com (8.15.2/8.15.2) with ESMTPSA id v8MDL2FU010874 (version=TLSv1 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for ; Fri, 22 Sep 2017 14:21:04 +0100 (BST) (envelope-from kpielorz_lst@tdx.co.uk) Date: Fri, 22 Sep 2017 14:21:02 +0100 From: Karl Pielorz To: freebsd-net@freebsd.org Subject: CARP under 10.3 - can't "ifconfig down" one or more VHIDs? Message-ID: <1183C95F3417890F2D0B1756@[10.12.30.106]> X-Mailer: Mulberry/4.0.8 (Win32) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 22 Sep 2017 13:21:12 -0000 Hi, We've been using CARP for a long time - initially under FreeBSD 9.x. We're just looking at setting it up on some 10.3 boxes, and have hit a snag. Some of the syntax for setting it up has changed, but that's Ok, we've read up and got it working. The issue we've got is if I want to "disable CARP" on one of the 9.x boxes, temporarily I can do: ifconfig carp0 down ifconfig carp1 down ifconfig carp2 down The host's base NIC IP address (i.e. non-vhid) address is left usable, and intact - but all the CARP interfaces get set as "INIT" - so they're still there, but they're not going to participate in CARP, until you do a "ifconfig carpX up" on them. If I try this under 10.3 - e.g. with a NIC with 3 vhid's setup: carp: BACKUP vhid 1 advbase 1 advskew 100 carp: BACKUP vhid 2 advbase 1 advskew 100 carp: BACKUP vhid 3 advbase 1 advskew 100 So, I do: ifconfig em0 vhid 1 down And, they *all* go to INIT: carp: INIT vhid 1 advbase 1 advskew 100 carp: INIT vhid 2 advbase 1 advskew 100 carp: INIT vhid 3 advbase 1 advskew 100 And, worse - em0 is now also down. Trying to set the 'state' to "INIT" on an individual vhid doesn't work either (no error, but it does nothing). Is there a way under 10.3 to "disable" (i.e. set to INIT) the CARP vhid's - without disabling the underlying NIC? We tend to do this for maintenance where we're taking services down, and don't want the host to 'accidentally' pickup stray CARP vhid's from other boxes (because there's no service running). Thanks, -Karl