On Tue, Mar 22, 2011 at 01:57:36PM +0100, Marcus M|lb|sch wrote: > More Info: > > - Neither rebooting the FW nor the linux machine did change anything > > - changing the load balancing from "arp balancing" to "ip balancing" > did not change anything. > > - At first I thought it might be a problem of the switch and it has > an "old" virtual IP address cached. However, the log on the FW does > show that the machgine itself replies to to the arp-request, does it > not? > > - it happened "suddenly". I did change a pf-rule and restarted pf; > however I did not restart networking (AFAIK) > > - unfortunately I cannot determine whether the "wrong" lladdress was > used as virtual address before. I did not note it down, before this > happened. >
The lladdr is not wrong. It just happens to be the one for the second vhid. Since you do arp balancing the two lladdrs are split among the various hosts on the lan. Your carp setup runs with two MACs 00:00:5e:00:01:21 for vid 33 and 00:00:5e:00:01:85 for vid 133. So the MAC addr your linux box got is not wrong. Does the traffic from the linux box end up on the FW or is the traffic lost somewhere in between? -- :wq Claudio
