From owner-freebsd-stable@FreeBSD.ORG Wed Jun 15 11:42:17 2011 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id E2DF11065674 for ; Wed, 15 Jun 2011 11:42:17 +0000 (UTC) (envelope-from hosting@syscare.sk) Received: from services.syscare.sk (services.syscare.sk [188.40.39.36]) by mx1.freebsd.org (Postfix) with ESMTP id 9669D8FC15 for ; Wed, 15 Jun 2011 11:42:17 +0000 (UTC) Received: from services.syscare.sk (services [188.40.39.36]) by services.syscare.sk (Postfix) with ESMTP id AAA0925BCE for ; Wed, 15 Jun 2011 13:27:12 +0200 (CEST) X-Virus-Scanned: amavisd-new at rulez.sk Received: from services.syscare.sk ([188.40.39.36]) by services.syscare.sk (services.rulez.sk [188.40.39.36]) (amavisd-new, port 10024) with ESMTP id REwo5MLoUrCj for ; Wed, 15 Jun 2011 13:27:10 +0200 (CEST) Received: from hosting.syscare.sk (hosting [188.40.39.37]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by services.syscare.sk (Postfix) with ESMTPS id E6F8625BC3 for ; Wed, 15 Jun 2011 13:27:10 +0200 (CEST) Received: (from www@localhost) by hosting.syscare.sk (8.14.4/8.14.4/Submit) id p5FBRAae068139; Wed, 15 Jun 2011 13:27:10 +0200 (CEST) (envelope-from hosting@syscare.sk) X-Authentication-Warning: hosting.syscare.sk: www set sender to hosting@syscare.sk using -f To: X-PHP-Originating-Script: 0:func.inc MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit Date: Wed, 15 Jun 2011 12:27:10 +0100 From: Daniel Gerzo Organization: The FreeBSD Project In-Reply-To: <4DF7CC21.6040500@comcast.net> References: <4DF72488.6050806@my.gd> <4DF793B5.903@my.gd> <4DF79B72.2090805@comcast.net> <99A75196-BE3C-466C-9B0B-CF874C1287B5@my.gd> <4DF7CC21.6040500@comcast.net> Message-ID: <576e36f56ac928be2a5ecb651e034af8@rulez.sk> X-Sender: danger@FreeBSD.org User-Agent: Roundcube Webmail/0.5.1 Subject: Re: Networking - CARP interfaces X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 15 Jun 2011 11:42:18 -0000 On Tue, 14 Jun 2011 17:01:21 -0400, Steve Polyack wrote: >>>> >>>> I'll just have to adapt and ensure they have the same IP addresses >>>> then. >>> I have a suspicion that the important part may be the number of IP >>> addresses on the CARP interface. If CARP sends an advertisement from >>> each IP alias on a CARP interface, then I think that would explain >>> what you are seeing - and also possibly give you a workaround by >>> adding two more bogus IPs on your primary datacenter firewalls (where >>> IPs W and Z are normally missing). >>> >>> - Steve >>> >> I'll give it a try, although I think in a scenario where the carp >> interfaces have the same number of IPs and these IPs differ, both >> interfaces will claim mastership. >> >> Will post results. > > Now that I look at the spec, it looks like both the count and the > addresses themselves are provided in VRRP packets. CARP likely does > the same. I can't speak for whether these things are considered > along > with the VHID and password, but it's worth a shot. I think you are > correct, though. CARP does the same and should you have different IP addresses on the master/backup machines they will misbehave. I think the way to solve this issue is to split the two other IP addresses onto a separate carpN interface... -- Kind regards Daniel