Hi, I followed the instructions in the carp man page example to setup a pair of firewalls in active/active mode.
For some reason, I can not make both firewalls to stay active. I tried balancing ip, ip-stealth, and ip-unicast. But, in all attempts, I get fw1# ifconfig carp carp1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500 B B B B lladdr 00:00:5e:00:01:01 B B B B priority: 0 B B B B carp: carpdev sk1 advbase 1 balancing ip-unicast B B B B B B B B state BACKUP vhid 1 advskew 100 B B B B B B B B state MASTER vhid 2 advskew 0 B B B B groups: carp B B B B status: backup B B B B inet6 fe80::227:eff:fe19:6a4f%carp1 prefixlen 64 scopeid 0x8 B B B B inet 150.161.200.4 netmask 0xffffff00 broadcast 150.161.200.255 fw2# ifconfig carp carp1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500 B B B B lladdr 00:00:5e:00:01:01 B B B B priority: 0 B B B B carp: carpdev sk1 advbase 1 balancing ip-unicast B B B B B B B B state MASTER vhid 1 advskew 0 B B B B B B B B state BACKUP vhid 2 advskew 100 B B B B groups: carp B B B B status: master B B B B inet6 fe80::227:eff:fe19:44c7%carp1 prefixlen 64 scopeid 0x8 B B B B inet 150.161.200.4 netmask 0xffffff00 broadcast 150.161.200.255 Could someone please help me to identify what I am doing wrong? Here are some of the packets I see on the external interface: 11:05:44.703805 00:00:5e:00:01:02 01:00:5e:00:00:12 0800 70: carp 150.161.200.3 > 224.0.0.18: CARPv2-advertise 36: vhid=2 advbase=1 advskew=0 demote=0 (DF) [tos 0x10] (ttl 255, id 16851, len 56) 11:05:44.889831 00:00:5e:00:01:01 01:00:5e:00:00:12 0800 70: carp 150.161.200.8 > 224.0.0.18: CARPv2-advertise 36: vhid=1 advbase=1 advskew=0 demote=0 (DF) [tos 0x10] (ttl 255, id 41185, len 56) Thanks in advance. Regards, Joao
