Hi, On Tue, 06.01.2009 at 17:11:45 -0600, Jon Slusher <jslus...@opinionlab.com> wrote: > and for some reason it tried to take over as the MASTER, while its CARP
a shot in the dark: Are you sure that CARP traffic flows freely between the two firewalls, and that they both have the same password? That the IP setup is generally consistent? (Eg. I have trouble with what you call a "WAN" interface - those interfaces that I am aware of, should not be able to support CARP operation because they are point-to-point interfaces.) > LAN interface would also not go beyond the INIT state. I had to shut it I've seen this, too, and tracked it down to be either a misconfiguration (eg. a typo), or overlapping networks. Eg. I have something like this on a pair of firewalls: interface1: 10.10.0.0/16 interface2: 10.10.10.0/24 Doing this manually works like a charm, but CARP can't handle it (at least not in 4.4). Try "sh netstart <broken-interface>" to see proper error messages. Kind regards, --Toni++
