Hello everybody, I asked about one or two weeks ago regarding problems of carp and dhcp. After some more investigation, the dhcpd doesn't seem to be the problem.
That's the situation: I've two firewalls, running as master/slave pair. One of my uplinks is a cable connection. Due to the fact that the provider only allows traffic from a given MAC address, I had to fake the mac of the phsical interfaces on the host to be the same as the MAC of the carp interface. That was the only way I got this working at all. This interface is configured like this: cat /etc/hostname.carp0 !ifconfig em0 lladdr 00:00:5e:00:01:01 !ifconfig em0 up !ifconfig em0 description PHYS_INET_IF vhid 1 pass password carpdev em0 112.104.156.74 112.104.156.255 netmask 255.255.255.0 up description CARP_INET_IF So far, no problem, this works fairly well. On top of that em0 interface, I have a vlan interface, that needs an IP address assigned, because I want to have a dhcp server listening on that interface, and carp on top of that like this: cat /etc/save2.hostname.carp23 !ifconfig vlan23 create !ifconfig vlan23 vlan 23 vlandev em0 !ifconfig vlan23 192.168.123.3 netmask 255.255.255.0 broadcast 192.168.123.255 up !ifconfig vlan23 description ALIEN_VLAN_IF vhid 1 pass password carpdev vlan23 192.168.123.1 192.168.123.255 netmask 255.255.255.0 up description CARP_ALIEN_IF On the slave, both carp interfaces have a advskew 20 configured, and the vlan23 interface has a different IP address. With no IP address assigned on the vlan23 interface, everything works fine. The carp23 interface on the slave host stays in backup mode. But with the IP address assigned to the vlan23 interface, the slave it is going into master mode too. With tcpdump I've seen, the carp packets have a source IP address of the virtual IP address, when the underlying interface doesn't have an IP address assigned. With assigned IP addresses, the carp packets have the source IP address of the IP assigned to the underlying interface. I tried to change the MAC address of the vlan23 interface so that they are different on both hosts, but that did not helped. I tried to bind the dhcpd on the carp interface, but that didn't work. Do I can get the dhcpd listening on an interface that has no IP address assigned? Or any other idea how I could get this to work? kind regards Sebastian
