From owner-freebsd-current@FreeBSD.ORG Thu Jul 16 21:06:50 2009 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 8E8BF106566B for ; Thu, 16 Jul 2009 21:06:50 +0000 (UTC) (envelope-from ianf@clue.co.za) Received: from inbound01.jnb1.gp-online.net (inbound01.jnb1.gp-online.net [41.161.16.135]) by mx1.freebsd.org (Postfix) with ESMTP id 1D3368FC08 for ; Thu, 16 Jul 2009 21:06:49 +0000 (UTC) (envelope-from ianf@clue.co.za) Received: from [41.145.103.163] (helo=clue.co.za) by inbound01.jnb1.gp-online.net with esmtpsa (TLS-1.0:DHE_RSA_AES_256_CBC_SHA1:32) (Exim 4.63) (envelope-from ) id 1MRYAB-0006Zo-Eg; Thu, 16 Jul 2009 23:06:47 +0200 Received: from localhost ([127.0.0.1] helo=clue.co.za) by clue.co.za with esmtp (Exim 4.69 (FreeBSD)) (envelope-from ) id 1MRYA8-0005df-D6; Thu, 16 Jul 2009 23:06:44 +0200 To: d@delphij.net From: Ian FREISLICH In-Reply-To: <4A5F8010.7050504@delphij.net> References: <4A5F8010.7050504@delphij.net> <4A5F7540.7070201@delphij.net> <4A5EF889.6040604@delphij.net> X-Attribution: BOFH Date: Thu, 16 Jul 2009 23:06:44 +0200 Message-Id: Cc: FreeBSD Current Subject: Re: CARP broken on -CURRENT? X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 16 Jul 2009 21:06:50 -0000 Xin LI wrote: > Ian FREISLICH wrote: > > To use carp, the administrator needs to configure at minimum > > a common virtual host ID (VHID) and virtual host IP address > > on each machine which is to take part in the virtual group. > > Additional parameters can also be set on a per-interface basis: > > advbase and advskew, which are used to control how frequently > > the host sends advertisements when it is the master for a > > virtual host, and pass which is used to authenticate carp > > advertisements. > > Um... In order to narrow this down I have removed advbase setting from > both servers (now they use the default number, 1) but seems no luck. > > I have further checked netstat -s, it seems that only the CARP packets > with bad length (which are really VRRP packets) are being counted into > the "received" packets, and were all discarded (of course). I've > manually put these interfaces down and will check back to see if there > is some clue in our code in the afternoon. > > Jul 16 12:22:58 gate2 kernel: carp_input: received len 20 < > sizeof(struct carp_header) on em0 > Jul 16 12:23:01 gate2 kernel: carp_input: received len 20 < > sizeof(struct carp_header) on em0 I've only ever encountered messages like these when there's been a linux host on the same network with ucarp or heartbeat running sending their broken "carp" packets with a vhid that's the same as one I was using. Have you tried setting a "pass" on your carp interfaces? Are you sure it's your host that's generating these short carp packets? Use 'tcpdump -eni proto carp' to verify. Ian -- Ian Freislich