Hello all,
a linux machine connected to the OpenBSD-FW (which uses CARP) cannot
connect to the Firewall.
Somehow it got the worng Mac-Address in its ARP-table. I removed it
manually, but when pinging again the OpenBSD firewall send the worng
address:
"tcpdump -nvi bge0 arp" on the OpenBSD machine shows:
> tcpdump: listening on bge0, link-type EN10MB
> 12:47:16.467905 arp who-has 192.168.3.1 tell 192.168.3.200
> 12:47:16.467939 arp reply 192.168.3.1 is-at 00:00:5e:00:01:85
Whereas "ifconfig carp3" shows the Virtual MAC-address to be:
carp3: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
lladdr 00:00:5e:00:01:21
priority: 0
carp: carpdev bge0 advbase 1 balancing arp carppeer 192.168.3.3
state MASTER vhid 33 advskew 0
state MASTER vhid 133 advskew 100
groups: carp dmz
status: master
inet6 fe80::200:5eff:fe00:121%carp3 prefixlen 64 scopeid 0x12
inet 192.168.3.1 netmask 0xffffff00 broadcast 192.168.3.255
No wonder the linux machine again cannot connect.
arp -n
Address HWtype HWaddress Flags Mask Iface
192.168.3.1 ether 00:00:5e:00:01:85 C eth0
Can anybody tell me what went on here?
Marcus
