Hi list, getting nearer to the point of deployment of a really nice relayd/pf/pfsync setup I came across an issue.
I'd like to run ntpd to syncronize against ntp servers that are in our network. However, it only works on the machine with *active* carp interface(s). On the machine with carp interface(s) in backup state following happens (found using tcpdump): ntpd sends out packets to the ntp server on the (backup!) carp interface and thus the reply of the ntp server goes to an IP address that's not in use on the questioning machine. My question now is: Is it possible to 'bind' ntpd on a certain interface (there's, beside the carp IP address, a dedicated 'real' IP address for every carped machine) so that it uses this instead of the (inactive) carp interface? If this is not possible, is there anything I can do using pf, like using source-routing or similar? TIA, Joe
