pfSense

In complex setups it can be crucial to have both nodes have e.g. an OpenVPN tunnel (client setup) on each node separate from each other e.g. with different certificates to identify the nodes. We had multiple queries from customers if that could be achieved without loosing the complete OpenVPN sync (e.g. for RAS style setups that should indeed be synced). But having the ability to stop a single server or client config from syncing via XMLRPC could achieve a setup with both nodes connected and running FRR/OSPF or sth alike with active detection of link loss instead of running the tunnel only on the main node but not on the standby node.
It could also be greatly used for a backup kind of setup to connect all nodes to a cloud or HQ server and frequently copy the config file as backup or create the ability to remotely admin the standby node without having to go through the main node via some NAT configuration.

Cheers
\jens