Is anyone using the carpnodes load-balancing feature for carp(4)? I can't seem to get it to balance any traffic across the two nodes. I'm testing a simple dual-homed CARP/pfsync pair. Creating the interfaces is simple enough and they seem to behave ok. I have to use ip-stealth for the switch to work properly.
host-a # ifconfig carp0 10.20.0.1 netmask 255.255.255.0 \ carpnodes 1:0,2:100 balancing ip-stealth host-a # ifconfig carp1 10.30.0.1 netmask 255.255.255.0 \ carpnodes 1:0,2:100 balancing ip-stealth host-b # ifconfig carp0 10.20.0.1 netmask 255.255.255.0 \ carpnodes 1:100,2:0 balancing ip-stealth host-b # ifconfig carp1 10.30.0.1 netmask 255.255.255.0 \ carpnodes 1:100,2:0 balancing ip-stealth After a short delay I can ping 10.20.0.1 from another host. Everything looks normal except there is a lack of routes on host-b pointing to the carp interfaces (output abbreviated for clarity). host-a # netstat -rn -finet | grep carp 10.20.0.1 10.20.0.1 UH 0 0 - 4 carp0 10.30.0.1 10.30.0.1 UH 0 0 - 4 carp1 host-b # netstat -rn -finet | grep carp I will then issue a network test from a client (10.20.0.4) to a server (10.30.0.4). While monitoring netstat -i, I can see all of the traffic entering and leaving both interfaces on host-a, but only entering interfaces on host-b (no forwarding). Forwarding is correctly enabled on both hosts and they're running the same ruleset. Same results with pf disabled. I haven't found many examples of carpnodes in production on the lists. Can someone please verify this is truly feature complete and that I'm just doing something stupid (highly possible)? Thanks, -- Jason Dixon DixonGroup Consulting http://www.dixongroup.net/
