From owner-freebsd-pf@FreeBSD.ORG Thu Jun 30 14:56:02 2005 Return-Path: X-Original-To: freebsd-pf@freebsd.org Delivered-To: freebsd-pf@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D52C716A41F for ; Thu, 30 Jun 2005 14:56:02 +0000 (GMT) (envelope-from chris@xecu.net) Received: from mss1.myactv.net (mss1.myactv.net [24.89.0.26]) by mx1.FreeBSD.org (Postfix) with SMTP id 821C843D53 for ; Thu, 30 Jun 2005 14:56:01 +0000 (GMT) (envelope-from chris@xecu.net) Received: (qmail 25120 invoked from network); 30 Jun 2005 14:56:00 -0000 Received: from dyn-153-112-163.myactv.net (HELO ?192.168.1.100?) (24.153.112.163) by new.mss1.myactv.net with SMTP; 30 Jun 2005 14:56:00 -0000 Mime-Version: 1.0 (Apple Message framework v622) Content-Transfer-Encoding: 7bit Message-Id: Content-Type: text/plain; charset=US-ASCII; format=flowed To: freebsd-pf@freebsd.org From: Chris McGee Date: Thu, 30 Jun 2005 10:55:59 -0400 X-Mailer: Apple Mail (2.622) Subject: Carp master problem (sorry for the duplicate) X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 30 Jun 2005 14:56:03 -0000 Sorry to duplicate, but I had sent this from the wrong address. Hopefully I will get all the responses from this one. I have to machines in a test environment, the carp0 interface on the machines will not become master. The config is as follows: test1# ifconfig em0: flags=8943 mtu 1500 options=b inet 192.168.1.252 netmask 0xffffff00 broadcast 192.168.1.255 inet6 fe80::230:48ff:fe82:a77c%em0 prefixlen 64 scopeid 0x1 ether 00:30:48:82:a7:7c media: Ethernet autoselect (100baseTX ) status: active em1: flags=8943 mtu 1500 options=b inet 10.10.10.2 netmask 0xfffffff8 broadcast 10.10.10.7 inet6 fe80::230:48ff:fe82:a77d%em1 prefixlen 64 scopeid 0x2 ether 00:30:48:82:a7:7d media: Ethernet autoselect (100baseTX ) status: active carp0: flags=41 mtu 1500 inet 192.168.1.10 netmask 0xffffff00 carp: BACKUP vhid 1 advbase 1 advskew 0 carp1: flags=41 mtu 1500 inet 10.10.10.1 netmask 0xfffffff8 carp: MASTER vhid 2 advbase 1 advskew 0 em0: flags=8943 mtu 1500 options=b inet 192.168.1.253 netmask 0xffffff00 broadcast 192.168.1.255 inet6 fe80::230:48ff:fe80:21bc%em0 prefixlen 64 scopeid 0x1 ether 00:30:48:80:21:bc media: Ethernet autoselect (100baseTX ) status: active em1: flags=8943 mtu 1500 options=b inet 10.10.10.3 netmask 0xfffffff8 broadcast 10.10.10.7 inet6 fe80::230:48ff:fe80:21bd%em1 prefixlen 64 scopeid 0x2 ether 00:30:48:80:21:bd media: Ethernet autoselect (100baseTX ) status: active carp0: flags=41 mtu 1500 inet 192.168.1.10 netmask 0xffffff00 carp: BACKUP vhid 1 advbase 1 advskew 100 carp1: flags=41 mtu 1500 inet 10.10.10.1 netmask 0xfffffff8 carp: BACKUP vhid 2 advbase 1 advskew 100 both test1 and test2 have these sysctl variables: net.inet.carp.allow: 1 net.inet.carp.preempt: 1 net.inet.carp.log: 1 net.inet.carp.arpbalance: 0 If I down the carp1 interface on either box the other box becomes master. If I down the carp0 interface on either box, the other stays backup. Both carp0 interfaces stay backup all the time and therefore I can't access 192.168.1.10. The questions has been asked, do I see the the multicast traffic, and are their firewall rules that could be blocking it? I see multicast traffic out on em0 on test1 and I see multicast traffic from test1 on em0 of test2. The only firewall rules are pass in all and pass out all. Thanks, Chris