I need to make work a scheme like this: http://i.imgur.com/1xsXX.png
So, i have 3 servers: in, out1 and out2; out1 and out2 plugged into one switched environment, so they can see each other on layer 2, which is bad for me, because they can make a switching loop in some case. out1 and out2 connects with openvpn to "in" in bridged configuration, tap interfaces have no addresses. Then i make bridge interfaces on all servers and adding only tap0 interfaces to bridge0 on each server, make each bridge0 interface configured with address from 10.0.0.0/24 subnet. On this moment everything is working and servers pinging each other 10.0.0.0/24 address. Then i want to make carp work on out1 and out2 on bridge0-tap0 pair, but if i config carp0 interface to work in 10.0.0.0/24 subnet, it stays in INIT state forever - so this is my first question - why carp won't work on bridge0-tap0 interface? If i bridge tap0 and em0 interfaces on out1 and out2, then carp on both servers get into MASTER state, i get switching loop and when i use tcpdump on bridge0 interfaces (-i bridge0 net 10.0.0.0/24), on out1 i see ONLY vrrp advertisements from out2 (no advertisements from out1), on out2 bridge0 i see ONLY advertisements from out1, and on "in" bridge0 i see advertisements from both servers, and nothing is working. So, here's the second question - how to make things work in this case? STP? But how to configure it, what interfaces put into STP? And will my precious carp work with STP? Thank you for your attention. -- your sweet isn't ready yet _______________________________________________ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
