From owner-freebsd-bugs@freebsd.org  Fri Dec  2 21:24:24 2016
Return-Path: <owner-freebsd-bugs@freebsd.org>
Delivered-To: freebsd-bugs@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id B59ACC63405
 for <freebsd-bugs@mailman.ysv.freebsd.org>;
 Fri,  2 Dec 2016 21:24:24 +0000 (UTC)
 (envelope-from bugzilla-noreply@freebsd.org)
Received: from kenobi.freebsd.org (kenobi.freebsd.org
 [IPv6:2001:1900:2254:206a::16:76])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id A59A7163D
 for <freebsd-bugs@FreeBSD.org>; Fri,  2 Dec 2016 21:24:24 +0000 (UTC)
 (envelope-from bugzilla-noreply@freebsd.org)
Received: from bugs.freebsd.org ([127.0.1.118])
 by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id uB2LOOAv076557
 for <freebsd-bugs@FreeBSD.org>; Fri, 2 Dec 2016 21:24:24 GMT
 (envelope-from bugzilla-noreply@freebsd.org)
From: bugzilla-noreply@freebsd.org
To: freebsd-bugs@FreeBSD.org
Subject: [Bug 213282] FreeBSD 10.2 / Carp / PfSync
Date: Fri, 02 Dec 2016 21:24:24 +0000
X-Bugzilla-Reason: AssignedTo
X-Bugzilla-Type: changed
X-Bugzilla-Watch-Reason: None
X-Bugzilla-Product: Base System
X-Bugzilla-Component: kern
X-Bugzilla-Version: 10.2-STABLE
X-Bugzilla-Keywords: 
X-Bugzilla-Severity: Affects Many People
X-Bugzilla-Who: JeanAumont@gmail.com
X-Bugzilla-Status: New
X-Bugzilla-Resolution: 
X-Bugzilla-Priority: ---
X-Bugzilla-Assigned-To: freebsd-bugs@FreeBSD.org
X-Bugzilla-Flags: 
X-Bugzilla-Changed-Fields: 
Message-ID: <bug-213282-8-ezlLv5rSJU@https.bugs.freebsd.org/bugzilla/>
In-Reply-To: <bug-213282-8@https.bugs.freebsd.org/bugzilla/>
References: <bug-213282-8@https.bugs.freebsd.org/bugzilla/>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/
Auto-Submitted: auto-generated
MIME-Version: 1.0
X-BeenThere: freebsd-bugs@freebsd.org
X-Mailman-Version: 2.1.23
Precedence: list
List-Id: Bug reports <freebsd-bugs.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-bugs>,
 <mailto:freebsd-bugs-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-bugs/>
List-Post: <mailto:freebsd-bugs@freebsd.org>
List-Help: <mailto:freebsd-bugs-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-bugs>,
 <mailto:freebsd-bugs-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 02 Dec 2016 21:24:24 -0000

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D213282

--- Comment #3 from JeanAumont@gmail.com ---
Hi,

In my opinion, the code should never let a firewall become MASTER if the st=
ate
table (pfsync) has not finish being populated with all the states.

During the boot, the firewall should be in INIT mode and then become MASTER
when the replication of the state is terminated.

It is clearly a bug and the fact that you have 2 MASTER at the same time wi=
ll
only cause problem to a lot of TCP sessions.

Currently the advskew of my firewall are 90 and 100.=20
Will changing them to 0 and 200 made a differnce ?=20
Does the firewall reads the content (advskew) of the CARP packet being rece=
ived
or does it used a timer to verify which one advertise more often?


This bug is affect the network traffic and should be look at.

Thanks,

Jean Aumont

--=20
You are receiving this mail because:
You are the assignee for the bug.=