Project

General

Profile

Actions

Feature #8958

closed

Dynamic DNS - CARP Address

Added by Michele D'Alessio about 4 years ago. Updated over 2 years ago.

Status:
Rejected
Priority:
Normal
Assignee:
-
Category:
Dynamic DNS
Target version:
-
Start date:
09/26/2018
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Release Notes:

Description

In the Dynamic DNS section It's not possible to update an address with the CARP address, IT's only possible to update the dynamic with the addresses of the physical interfaces. In HA mode it would be useful to add virtual IP as well.

Actions #1

Updated by Jim Pingle about 4 years ago

  • Status changed from New to Rejected

CARP addresses will always be static. What purpose will this serve?

If it's for Multi-WAN failover, pick the CARP address in the failover gateway group, then use that gateway group for Dynamic DNS.

Actions #2

Updated by Michele D'Alessio about 4 years ago

In High Available it is useful when you want to update / modify DNS from a single point without having to move to the Dynamic website.
When creating multiple VPN tunnels, clients must point to the address of the carp and not to the WAN address.
Currently I can not ask the PFSense to update the "static" CARP address in the Dynamic DNS

Actions #3

Updated by Michele D'Alessio about 4 years ago

Currently the WAN also has the static address
In any case, I update the Dynamic from the PFSense so if I had to change the WAN address, the dynamic and the related VPN tunnels are automatically updated as well.

Actions #4

Updated by Michele D'Alessio about 4 years ago

Eg:
Scenario with two firewalls in HA

Subnet x.x.x.224 / 27

CARP address: x.x.x.230 / 27

pfsense 1:
WAN address: x.x.x.228 / 27
dyndns: AAApfsense1.dyndns.org

pfsense 2:
WAN address: x.x.x.229 / 27
dyndns: AAApfsense2.dyndns.org

Currently if you vary the static addresses of the wan, the pfsense automatically updates the relative dns. If the CARP address varies I can not create any rules to update the dynamic DNS.

Eg:
dyndns: AAA.dyndns.org with CARP Address.

Actions #5

Updated by Marcio Gomes over 2 years ago

It makes sense to have in pfsense the possibility to select in the Dynamic DNS CARP interface for high availability in VPN, whoever has installed lost this possibility. I can send more information.

This option "CARP address in the failover gateway group, then use that gateway group for Dynamic DNS" is not possible.

Actions

Also available in: Atom PDF