carp 0.1.0 CARP (failover) CARP is a tool to help achieve system redundancy, by having multiple computers creating a single, virtual network interface between them, so that if any machine fails, another can respond instead, and/or allowing a degree of load sharing between systems. CARP is an improvement over the Virtual Router Redundancy Protocol (VRRP) standard. It was developed after VRRP was deemed to be not free enough because of a possibly-overlapping Cisco patent.

Services

carp.xml CARP Virtual IPs /pkg_edit.php?xml=carp.xml CARP Status carp_status.php CARP Settings carp_settings.xml /usr/local/pkg/ a+x http://www.pfsense.com/packages/config/carp_settings.xml /usr/local/pkg/pf/ a+x http://www.pfsense.com/packages/config/carp_rules.php /usr/local/www/ a+x http://www.pfsense.com/packages/config/carp_status.php ['installedpackages']['carp']['config'] VHID Group vhid Virtual IP Address ipaddress Advertising Frequency advskew Load Balancing balancing checkbox Netmask netmask Preemption premption checkbox Virtual IP Address ipaddress Enter the IP Address that you would like to share on both machines input Virtual IP Netmask netmask Enter the IP Address's netmask that you would like to share on both machines select 24 11 22 33 44 55 66 77 88 99 1010 1111 1212 1313 1414 1515 1616 1717 1818 1919 2020 2121 2222 2323 2424 2525 2626 2727 2828 2929 3030 3031 3032 Virtual IP Password password Enter the VHID group password. password VHID Group vhid Enter the VHID group that the machines will share select 1 11 (DEFAULT) 22 33 44 55 66 77 88 99 1010 1111 1212 1313 1414 1515 1616 1717 1818 1919 2020 2121 2222 2323 2424 2525 2626 2727 2828 2929 3030 Advertising Frequency advskew The frequency that this machine will advertise select 0 00 (DEFAULT) 11 22 33 44 55 66 77 88 99 1010 1111 1212 1313 1414 1515 1616 1717 1818 1919 2020 2121 2222 2323 2424 2525 2626 2727 2828 2929 3030 Load Balancing balancing If this feature is enabled, CARP source-hashes the originating IP of a request. The hash is then used to select a virtual host from the available pool to handle the request. This is disabled by default. checkbox Preemption premption When preemption is enabled, each CARP host will look at the advskew (Advertising Frequency) parameter in the advertisements it receives from the master, to try to determine whether it can advertise more frequently. If so, it will begin advertising, and the current master, seeing that there is another host with a lower advskew, will bow out. checkbox function sync_package_carp() { /* * XXX: find out how many carp and pfsync interfaces are established * and destroy/down them before sweeping through the list */ conf_mount_rw(); config_lock(); $fout = fopen("/usr/local/etc/rc.d/carp.sh","w"); fwrite($fout, "#!/bin/sh \n"); global $config; $using_arp_balance = 0; $using_preempt = 0; $carp_instances_counter = 0; $pfsync_instances_counter = 0; if($config['installedpackages']['carp']['config'] != "") { foreach($config['installedpackages']['carp']['config'] as $carp) { $pfsync = 0; /* * create the carp interface */ fwrite($fout, "echo Creating {$pfsync_instances_counter} ...\n"); fwrite($fout, "/sbin/ifconfig carp" . $carp_instances_counter . " create\n"); $broadcast_address = gen_subnet_max($carp['ipaddress'], $carp['netmask']); if($carp['password'] != "") { $password = " pass " . $carp['password']; } $carp_command = "/sbin/ifconfig carp" . $carp_instances_counter . " " . $carp['ipaddress'] . "/" . $carp['netmask']; $carp_command .= " broadcast " . $broadcast_address . " vhid " . $carp['vhid'] . " advskew " . $carp['advskew'] . $password; if($carp['balancing'] == "true") $using_arp_balance = 1; if($carp['preempt'] == "true") $using_preempt = 1; fwrite($fout, $carp_command . "\n"); fwrite($fout, "/sbin/ifconfig carp{$carp_instances_counter} up\n"); if($carp['pfsync'] != "") $pfsync = 1; $carp_instances_counter++; } } if($pfsync != 0) { /* * user has selected pfsync, bring it up. */ $carp_sync_int = convert_friendly_interface_to_real_interface_name($config['installedpackages']['carpsettings']['config']['pfsyncinterface']); $carp_sync_ip = $config['installedpackages']['carpsettings']['config']['pfsyncip']; fwrite($fout, "/sbin/ifconfig pfsync0 create\n"); fwrite($fout, "/sbin/ifconfig pfsync0 {$carp_sync_ip}/24\n"); fwrite($fout, "/sbin/ifconfig pfsync0 up syncif " . carp_sync_ip . "\n"); $pfsync_instances_counter++; } fwrite($fout, "/etc/rc.filter_configure"); fclose($fout); mwexec("chmod a+x /usr/local/etc/rc.d/carp.sh"); mwexec("/usr/local/etc/rc.d/carp.sh"); if($using_arp_balance == 1) system("sysctl net.inet.arpbalance=1"); if($preempt == 1) system("sysctl net.inet.carp.preempt=1"); conf_mount_ro(); config_unlock(); } sync_package_carp(); sync_package_carp(); system("/bin/rm /usr/local/www/carp* 2>/dev/null"); system("/bin/rm /usr/local/pkg/carp* 2>/dev/null"); system("/bin/rm /usr/local/pkg/pf/carp* 2>/dev/null"); system("/bin/rm /usr/local/etc/rc.d/carp* 2>/dev/null");