[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Pfsync not working



The message I continually get on both for both the external and
internal interface is "duplicate IP address 10.0.0.1 sent from
ethernet address 00:00:5e:00:01:01".  That looks like an IANA range
and I am assuming that it is some sort of reserved multicast mac
address (sorry, not too familiar with that).
If I completely shut down one machine, make sure I only have one carp
interface, I am left with
----hostname.carp0----
inet 10.0.0.1 255.255.255.0 10.0.0.255 vhid 1 pass blah
----hostname.tl0----
inet 10.0.0.254 255.255.255.0 NONE
Still, when I look at ifconfig carp0 I get "carp: BACKUP vhid1 advbase
1 advskew 0"
How can it be in a backup mode if it's the only interface... in fact
the only machine on line?  Furthermore, if I do a tcpdump on tl0 I see
nothing but two vrrp advertise frames followed by an arp from
10.0.0.1.  Is this strange or am I just missing some critical piece to
understanding?
 
[email protected] (Xavier Beaudouin) wrote in message news:<[email protected]>...
> Le 9 juin 04, à 22:26, Chris Golubski a écrit :
> 
> [...]
> 
> > looks pretty straight forward.  I'm at the scratching-my-head phase.
> 
> I think you make de mistake :
> 
> [...]
> 
> >> Firewall 1 - master(OpenBSD 3.5):
> 
> [...]
> 
> >> #/etc/hostname.fxp0(PFSYNC if):
> >> inet 192.168.254.254 255.255.255.0 NONE
> 
> [...]
> 
> >> Firewall 2 - backup(OpenBSD 3.5):
> 
> [...]
> 
> >> #/etc/hostname.xl0(PFSYNC if):
> >> inet 192.168.254.254 255.255.255.0 NONE
> 
> You have same ip on all pfsync if...
> 
> I really think that's why you get that :
> 
> >> /bsd: duplicate IP address 192.168.254.254  sent from Ethernet address
> >> 00:90:27:57:7e:71
> 
> Humm...
> 
> BTW, is it necessary to assign an ip to pfsync interface (this is a 
> good question for pf gurus ?)
> 
> /Xavier