Hi list, I have a theoretical question regarding a CARP cluster and many CARP interfaces
Assume we have a firewall comprising of two notes, each with 4 or more interfaces and only one uplink to the internet. The Cluster is in master/backup mode How does CARP behaves when on the master node two "unimportantly" interfaces fail and on the backup node only the uplink interface fails? Does CARP failover to the backup node and as consequence the whole network will be disconnected from the internet? In my mind one solution to avoid this situation is to rate the CARP interfaces. For example a more important interface gets a higher rate than a less important interface. Probably the ifstated deamon and the demotion counter are the topics to get around with this. Does anybody have experiences demotion couter and ifstated? Thanks in advance. Joerg -- Dipl.-Ing. (FH) Joerg Streckfuss, Phone: +49 40 808077-631 DFN-CERT Services GmbH, https://www.dfn-cert.de/, Phone +49 40 808077-555 Sitz / Register: Hamburg, AG Hamburg, HRB 88805, Ust-IdNr.: DE 232129737 Sachsenstra_e 5, 20097 Hamburg/Germany, CEO: Dr. Klaus-Peter Kossakowski [demime 1.01d removed an attachment of type application/x-pkcs7-signature which had a name of smime.p7s]
