Hi, Looking at the docs, unlike pfsync, sasyncd and everything else, you seem to be unable to define a "different" interface to CARP for the purposes of monitoring. Everything seems to need to go over the one carpdev.
My question arises is because I have a couple of OpenBSD units due to be plugged into upstream router ports (direct patch, not via intermediate switch). Obviously for most things, OSPF and BGP will take care of redundancy. But for the purposes of VPN failover, I would like to use CARP on my "external" interfaces, but as far as my interpretation of the docs go, CARP protocol won't work over Layer 3 ? Could someone provide further insight into whether my interpretation is correct, and whether I have any other options available ? I don't really want to go adding a layer 2 switch on my side because that just introduces extra point of failure. Thanks ! Bob