From owner-freebsd-pf@FreeBSD.ORG Wed Mar 2 23:15:55 2005 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 241A916A4CE for ; Wed, 2 Mar 2005 23:15:55 +0000 (GMT) Received: from zixvpm01.seton.org (zixvpm01.seton.org [207.193.126.161]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4FA6843D46 for ; Wed, 2 Mar 2005 23:15:54 +0000 (GMT) (envelope-from mgrooms@seton.org) Received: from zixvpm01.seton.org (ZixVPM [127.0.0.1]) by Outbound.seton.org (Proprietary) with ESMTP id 80EDC3600AF for ; Wed, 2 Mar 2005 17:15:53 -0600 (CST) Received: from smtp-out.seton.org (unknown [10.21.254.249]) by zixvpm01.seton.org (Proprietary) with ESMTP id A6D38330059; Wed, 2 Mar 2005 17:15:52 -0600 (CST) Received: from localhost (unknown [127.0.0.1]) by smtp-out.seton.org (Postfix) with ESMTP id 9AE038014E24; Wed, 2 Mar 2005 17:15:52 -0600 (CST) Received: from smtp-out.seton.org ([10.21.254.249]) by localhost (mail [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id 13254-16; Wed, 2 Mar 2005 17:15:52 -0600 (CST) Received: from ausexfe01.seton.org (ausexfe01.seton.org [10.20.10.211]) by smtp-out.seton.org (Postfix) with ESMTP id 8C5F48014E23; Wed, 2 Mar 2005 17:15:52 -0600 (CST) Received: from [10.20.160.190] ([10.20.160.190]) by ausexfe01.seton.org with Microsoft SMTPSVC(6.0.3790.211); Wed, 2 Mar 2005 17:15:52 -0600 Message-ID: <42264A0A.1090301@seton.org> Date: Wed, 02 Mar 2005 17:19:38 -0600 From: Matthew Grooms Organization: Seton Healthcare Network User-Agent: Mozilla Thunderbird 1.0 (Windows/20041206) X-Accept-Language: en-us, en MIME-Version: 1.0 To: Gleb Smirnoff References: <200502282232.17646.max@love2party.net> <4223931C.9000607@seton.org> <200502282326.41760.max@love2party.net> <4224B078.9020301@seton.org> <20050301185431.GA81982@cell.sick.ru> <4225174C.801@seton.org> <20050302081051.GB87159@cell.sick.ru> <422600A2.2080907@seton.org> <20050302191656.GA93112@cell.sick.ru> In-Reply-To: <20050302191656.GA93112@cell.sick.ru> Content-Type: text/plain; charset=KOI8-R; format=flowed Content-Transfer-Encoding: 7bit X-OriginalArrivalTime: 02 Mar 2005 23:15:52.0453 (UTC) FILETIME=[C745A350:01C51F7D] X-Virus-Scanned: by amavisd-new at seton.org cc: freebsd-pf@FreeBSD.org Subject: Re: Fwd: pf + pfsync + carp testing ... X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Technical discussion and general questions about packet filter (pf) List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 02 Mar 2005 23:15:55 -0000 Gleb & Max, Fantastic! The carp interfaces work like a champ now on RELENG_5. I have been testing the fail over for about half an hour and the MASTER / BACKUP state changes have worked 100% of the time. I really appreciate both of you taking the time to get this stuff into FreeBSD. On a slightly more depressing note, I don't think that state via pfsync seems to be working right between the two firewalls. Sometimes ( maybe every 1 out of 4 tries ) when the interfaces fail over, the traffic flow stops. The reason why I believe it is a state sync issue is that new connections can always be opened even while the previously opened connections are stalled. This doesn't always happen when an interface is going down either. It happens just as often when an interface is coming back up and reclaims a MASTER state. Any ideas? Matthew Gleb Smirnoff wrote: > Matthew, > > Yes. There was an error in there. Frank Volf has already showed me it in private > mail. Sorry for this. I'm working in HEAD now, where miibus and em does not need > this hacks. > > Fixed patch available at the same place: > > http://people.freebsd.org/~glebius/totest/carp-RELENG_5-patch >