I'm setting up a pf firewall with CARP and seeing the following message in the log
The external IP address will change over time.
From what I understand, this is part of the CARP broadcast and something that I should allow but the part I'm confused about is where the external IP addresses are coming from.
This will eventually be our new firewall but I'm still testing it before enabling the external interface.
Our VOIP system is on that subnet and the existing firewall may be allowing some unintended external traffic on that network.
Thanks in advance for any ideas.
Code:
192.168.xx.yy > 224.0.0.18: vrrp 192.168.xx.yy > 224.0.0.18: VRRPv2, Advertisement, vrid 3, prio 240, authtype none, intvl 1s, length 36, addrs(7): 170.74.122.14,169.107.172.18,59.251.106.179,2.253.72.152,52.208.62.198,207.16.95.153,62.61.153.92
11:45:27.121109 rule 18..16777216/0(match): block out on vlan100: (tos 0x10, ttl 255, id 24411, offset 0, flags [DF], proto VRRP (112), length 56)
The external IP address will change over time.
From what I understand, this is part of the CARP broadcast and something that I should allow but the part I'm confused about is where the external IP addresses are coming from.
This will eventually be our new firewall but I'm still testing it before enabling the external interface.
Our VOIP system is on that subnet and the existing firewall may be allowing some unintended external traffic on that network.
Thanks in advance for any ideas.