summaryrefslogtreecommitdiff
path: root/docs/services
diff options
context:
space:
mode:
authorRob Thomas <xrobau@gmail.com>2019-11-11 05:45:23 +1000
committerChristian Poessinger <christian@poessinger.com>2019-11-10 20:45:23 +0100
commit38412b8b7aea580978c10f5005b8c25932af0a9d (patch)
tree8310b8bbe39c2ab887c30a81bec155bba2bd6fff /docs/services
parentb66cdf17ad4f76e05b4c3359372d4315e6306143 (diff)
downloadvyos-documentation-38412b8b7aea580978c10f5005b8c25932af0a9d.tar.gz
vyos-documentation-38412b8b7aea580978c10f5005b8c25932af0a9d.zip
vrrp: add instructions when using conntrack-sync
Diffstat (limited to 'docs/services')
-rw-r--r--docs/services/conntrack.rst12
1 files changed, 10 insertions, 2 deletions
diff --git a/docs/services/conntrack.rst b/docs/services/conntrack.rst
index 27db622d..fc2d46ac 100644
--- a/docs/services/conntrack.rst
+++ b/docs/services/conntrack.rst
@@ -103,18 +103,26 @@ Now configure conntrack-sync service on ``router1`` **and** ``router2``
set service conntrack-sync accept-protocol 'tcp,udp,icmp'
set service conntrack-sync event-listen-queue-size '8'
- set service conntrack-sync failover-mechanism cluster group 'GROUP' # Or VRRP
+ set service conntrack-sync failover-mechanism cluster group 'GROUP'
set service conntrack-sync interface 'eth0'
set service conntrack-sync mcast-group '225.0.0.50'
set service conntrack-sync sync-queue-size '8'
+If you are using VRRP, you need to define a VRRP sync-group, and use ``vrrp sync-group`` instead of ``cluster group``.
+
+.. code-block:: sh
+
+ set high-availablilty vrrp group internal virtual-address ... etc ...
+ set high-availability vrrp sync-group syncgrp member 'internal'
+ set service conntrack-sync failover-mechanism vrrp sync-group 'syncgrp'
+
+
On the active router, you should have informations in the internal-cache of
conntrack-sync. The same current active connections number should be shown in
the external-cache of the standby router
On active router run:
-
.. code-block:: sh
$ show conntrack-sync statistics