Hi,

Looking at the docs, unlike pfsync, sasyncd and everything else, you
seem to be unable to define a "different" interface to CARP for the
purposes of monitoring.  Everything seems to need to go over the one
carpdev.

My question arises is because I have a couple of OpenBSD units due to
be plugged into upstream router ports (direct patch, not via
intermediate switch).

Obviously for most things, OSPF and BGP will take care of redundancy.
But for the purposes of VPN failover, I would like to use CARP on my
"external" interfaces, but as far as my interpretation of the docs go,
CARP protocol won't work over Layer 3 ?

Could someone provide further insight into whether my interpretation
is correct, and whether I have any other options available ?  I don't
really want to go adding a layer 2 switch on my side because that just
introduces extra point of failure.

Thanks !

Bob

Reply via email to