From owner-freebsd-net@FreeBSD.ORG Sun Dec 16 21:59:29 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id CA97E16A418 for ; Sun, 16 Dec 2007 21:59:29 +0000 (UTC) (envelope-from ndenev@gmail.com) Received: from rv-out-0910.google.com (rv-out-0910.google.com [209.85.198.190]) by mx1.freebsd.org (Postfix) with ESMTP id 8D49413C4DD for ; Sun, 16 Dec 2007 21:59:29 +0000 (UTC) (envelope-from ndenev@gmail.com) Received: by rv-out-0910.google.com with SMTP id l15so1818846rvb.43 for ; Sun, 16 Dec 2007 13:59:29 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:sender:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references:x-google-sender-auth; bh=5kk3FlGYvoXa5nuIlDSxxyriPk7MTFj9By4sMpERXYs=; b=O46NFeBvLE9KDnv1W9Y1F+aTGTbCT8KRs2zixZcSxvQQGydgYKPOuncunYshfPQ2UUE67HB9YxFMCKD3mS+fl2J7+fqvKvUy/70MnRVZ/C4yWuGiYNet+0c1uNFfBnW+TSctnaCkpBJ/E4dVM5xUJRYwfmSO+klBEK0xLyKO/6Q= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:sender:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references:x-google-sender-auth; b=VYo/KnszEqqLcjTxCuEOwGTD9TVCufT18jO6+P5pjEQgtwah8knq6I2S6y5sTXRGrVSQaGS0bOzVjkku2shcWQDlC9OQ15j8YuRzR1I5+ty2IiYCpiAZTOwcO8N+LODVciX5Hyn+UvIrjKhtvMhZSC233bTE83U/abqLVzS33wM= Received: by 10.140.88.42 with SMTP id l42mr3493173rvb.95.1197842369171; Sun, 16 Dec 2007 13:59:29 -0800 (PST) Received: by 10.141.170.18 with HTTP; Sun, 16 Dec 2007 13:59:29 -0800 (PST) Message-ID: <2e77fc10712161359u17ae857flee75401c85516f77@mail.gmail.com> Date: Sun, 16 Dec 2007 16:59:29 -0500 From: "Niki Denev" Sender: ndenev@gmail.com To: "Han Hwei Woo" In-Reply-To: <47659291.6050809@astutehosting.com> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <2e77fc10712132129o810a608v4ec6a742f9860a63@mail.gmail.com> <47625B80.3090904@FreeBSD.org> <2e77fc10712140937i19741f9cwe717499b18012a9a@mail.gmail.com> <2e77fc10712161021x378114eeh8cc0b2e0809800db@mail.gmail.com> <47659291.6050809@astutehosting.com> X-Google-Sender-Auth: 3ecdf5c5f0fbbd68 Cc: freebsd-net@freebsd.org Subject: Re: is carp on if_bridge possible? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 16 Dec 2007 21:59:29 -0000 On Dec 16, 2007 4:03 PM, Han Hwei Woo wrote: > > Hi Niki, > > I hope I'm understanding you correctly, but the reason you're running > if_lag is so that failover will occur even if there is a switch failure? > > If you enable preempt by setting: sysctl net.inet.carp.preempt=1, and you > have a carp running on the routers' interface that goes through the > switches, all the carp interfaces would failover in the event of a switch > failure, including the external facing one. With bridging or link > aggregation, there is nothing to stop a router from staying the master on > the external interface, even if the switch it is connected to fails. > > > Cheers, > Han Hwei Woo > > Hi Han, Yes, I have net.inet.carp.preempt enabled, but i'm using carp only on the internal interfaces to provide virtual default gateway for the servers behind it. Each of the routers speaks BGP (using openbgpd) to our provider and has it's own fiber uplink. The routers are also directly connected to each other with iBGP and OSPF(using openospfd) so this is not an issue. Regards, Niki