Date: Mon, 27 Oct 2014 15:16:33 +0100 From: Gerhard Schmidt <schmidt@ze.tum.de> To: freebsd-questions@freebsd.org Subject: ipfw and carp problems Message-ID: <544E53C1.1040103@ze.tum.de>
next in thread | raw e-mail | index | archive | help
This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --5FFPfh5Fr7fKVkMnWMlITsa9nqjQUuvd5 Content-Type: text/plain; charset=ISO-8859-15 Content-Transfer-Encoding: quoted-printable Hi, I have a small problem with ipfw an carp. i have two server with two carp ips and a firewall via ipfw. the problem is tha ipfw via modul is default to deny. So when the carp interfaces are initialized ipfw has no custom rules. Everything is denied, even the carp packets. So every time I reboot one of the hosts it comes up as master and after the firewall rules are initialized one of the servers is demoted to backup, which one seams to be random. My problem is that my setup need a new server do come up as backup because is has to replicate the data from the running server before being able to act as master. There could be data loss if a newly booted server named master without prior replicating the data. Is there a way to ensure that the firewall rules are up before the carp interfaces are initialized or to load the ipfw module with default to accept. Regards Estartu --=20 ------------------------------------------------- Gerhard Schmidt | E-Mail: schmidt@ze.tum.de TU-M=FCnchen | Jabber: estartu@ze.tum.de WWW & Online Services | Tel: 089/289-25270 | Fax: 089/289-25257 | PGP-Publickey auf Anfrage --5FFPfh5Fr7fKVkMnWMlITsa9nqjQUuvd5 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQEVAwUBVE5Tydl1K6RAAKkVAQJ1cQf9HXzNbW7o3Iqvf8ES/joHORaomwLQDl9J VjpjEneoDhwYmlqE7ofZQbBzXKzmkVTkpBuSJhGp/JMnm3LXpKIGhG2cS2liv9Hh g8tzGSEtS03wPgpqu54x7X5oDeTmkauxP5lHe+4MQbCseLR0XgcLjB7cT5LL9n6f henffNOl8llFPVkHrfhoxxzDIRzyv/Q+Q+UvzLbxj+GkkaiW4akMUyuicnGA+vNn 3tVRzVyopu4+uBvJUA+QeRXMa3tHkhQ+tM+xqGCgo4aqkBmyDjEfneyjBDXOWSy1 2PeO/7U+a44nWt385RyFCXBywRjLG8q4s82G5GkJXO+0Sp67m813Og== =Mq6g -----END PGP SIGNATURE----- --5FFPfh5Fr7fKVkMnWMlITsa9nqjQUuvd5--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?544E53C1.1040103>