kern/93829: [carp] pfsync state time problem with CARP +
Arp.Balance
Bill Marquette
bill.marquette at gmail.com
Sun Feb 26 08:10:15 PST 2006
The following reply was made to PR kern/93829; it has been noted by GNATS.
From: "Bill Marquette" <bill.marquette at gmail.com>
To: "Jon Simola" <jon at abccomm.com>
Cc: freebsd-pf at freebsd.org, bug-followup at FreeBSD.org
Subject: Re: kern/93829: [carp] pfsync state time problem with CARP + Arp.Balance
Date: Sun, 26 Feb 2006 10:02:34 -0600
On 2/26/06, Jon Simola <jon at abccomm.com> wrote:
> On 2/25/06, Mark Linimon <linimon at freebsd.org> wrote:
>
> > http://www.freebsd.org/cgi/query-pr.cgi?pr=3D93829
>
> > pfsync0: flags=3D41<UP,RUNNING> mtu 1348
> > pfsync: syncdev: fxp0 syncpeer: 15.1.1.1 maxupd: 128
>
> > ### Pfsync Rule
> > pass quick on { em1 } proto pfsync
>
> This problem seems obvious.
Yep, looks like user error in this case. However, I've seen this
happen when I've accidentally had carp mismatches such that my
firewalls were also seeing an asymmetric traffic stream. The hazard
of fast networks (and possibly slow machines) I'm afraid.
--Bill
More information about the freebsd-pf
mailing list