From owner-freebsd-net@FreeBSD.ORG Thu Jun 12 19:19:09 2008 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 4FE55106564A for ; Thu, 12 Jun 2008 19:19:09 +0000 (UTC) (envelope-from peterjeremy@optushome.com.au) Received: from mail12.syd.optusnet.com.au (mail12.syd.optusnet.com.au [211.29.132.193]) by mx1.freebsd.org (Postfix) with ESMTP id DA5648FC18 for ; Thu, 12 Jun 2008 19:19:08 +0000 (UTC) (envelope-from peterjeremy@optushome.com.au) Received: from server.vk2pj.dyndns.org (c122-106-215-175.belrs3.nsw.optusnet.com.au [122.106.215.175]) by mail12.syd.optusnet.com.au (8.13.1/8.13.1) with ESMTP id m5CJJ5Zp014584 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Fri, 13 Jun 2008 05:19:06 +1000 Received: from server.vk2pj.dyndns.org (localhost.vk2pj.dyndns.org [127.0.0.1]) by server.vk2pj.dyndns.org (8.14.2/8.14.2) with ESMTP id m5CJJ5Tt014147; Fri, 13 Jun 2008 05:19:05 +1000 (EST) (envelope-from peter@server.vk2pj.dyndns.org) Received: (from peter@localhost) by server.vk2pj.dyndns.org (8.14.2/8.14.2/Submit) id m5CJJ5pg014146; Fri, 13 Jun 2008 05:19:05 +1000 (EST) (envelope-from peter) Date: Fri, 13 Jun 2008 05:19:05 +1000 From: Peter Jeremy To: Oliver Fromme Message-ID: <20080612191905.GK84454@server.vk2pj.dyndns.org> References: <200806121526.m5CFQPAI021114@lurza.secnetix.de> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="tEFtbjk+mNEviIIX" Content-Disposition: inline In-Reply-To: <200806121526.m5CFQPAI021114@lurza.secnetix.de> X-PGP-Key: http://members.optusnet.com.au/peterjeremy/pubkey.asc User-Agent: Mutt/1.5.17 (2007-11-01) Cc: freebsd-net@freebsd.org Subject: Re: CARP + multiple addresses X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 12 Jun 2008 19:19:09 -0000 --tEFtbjk+mNEviIIX Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On 2008-Jun-12 17:26:25 +0200, Oliver Fromme wrote: >So far it seems to work fine with CARP, but now it turned >out that I need another address from a different subnet >which also needs to access the database. What's the best >way to do that? Add a second IP address to the existing >carp interface, or create a new carp interface? Are there >any pros and cons? I'm currently working towards something like this and intending to have one CARP interface for each VLAN. >And now I need to add an IP address from vlan202 which >also needs to access the same database. I'm inclined to >add 10.1.202.40/32 vhid 1 to the existing carp0 on both >servers. I assume that the CARP interface goes to BACKUP >when *any* of its IP addresses fail, right? Can anybody >confirm this, please? My reading of the various documentation says that you are on the right track but, by default, each CARP interface will fail over independently. If you want them all to fail over together then you should set net.inet.carp.preempt (see carp(4) and its first example) --=20 Peter Jeremy Please excuse any delays as the result of my ISP's inability to implement an MTA that is either RFC2821-compliant or matches their claimed behaviour. --tEFtbjk+mNEviIIX Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (FreeBSD) iEYEARECAAYFAkhRdqgACgkQ/opHv/APuIcscgCdGWkBfbAqY+Ch8wy8YMw8Arsn zm4AoKUEPdIbKfRipIlYTI7S95r9Uykb =62fj -----END PGP SIGNATURE----- --tEFtbjk+mNEviIIX--