carp and rtadvd
Ermal Luçi
eri at freebsd.org
Tue Jan 28 13:18:59 UTC 2014
On Tue, Jan 28, 2014 at 2:07 PM, Ole Myhre <ole at dataoppdrag.no> wrote:
> Hi,
>
> I have a simple setup with two 10.0-RELEASE firewalls running carp, a
> virtual IPv6 address and running rtadvd:
>
> (applied to both firewalls)
>
> # kldload carp
> # ifconfig em2 inet6 2001:db8::1/64 vhid 1 up
> # sysctl net.inet6.ip6.forwarding=1
> # echo 'rtadvd_enable="YES"' >> /etc/rc.conf
> # echo 'rtadvd_interfaces="em2"' >> /etc/rc.conf
> # service rtadvd start
>
> This works fine, one firewall is MASTER, the other BACKUP and the
> clients behind em2 gets a prefix in the 2001:db8::/64 subnet. However
> both firewalls are sending router advertisements (only one being MASTER)
> with the LL-address of the physical em2 interface as the gateway. This
> causes clients that supports multiple default gateways to select both
> firewalls as their default gateway, and sending traffic to both the
> MASTER and BACKUP firewall.
>
> Is there a way to make only the MASTER send router advertisements or
> (preferably only the MASTER) sending router advertisements with a
> virtual LL-address?
>
>
You have to use the rtadvd patched from pfSense.
Look at our tools repo to get the code.
> Thanks,
> Ole Myhre
> _______________________________________________
> freebsd-net at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-net
> To unsubscribe, send any mail to "freebsd-net-unsubscribe at freebsd.org"
>
--
Ermal
More information about the freebsd-net
mailing list