On Tue, Apr 13, 2021 at 08:15:05PM -0000, Jason Long wrote:
Hello, I used https://tecadmin.net/ip-failover-setup-using-keepalived-on-centos-redhat/%22... tutorial to configure Keepalived on two CentOS web servers:
Server 1: 192.168.56.7 Server 2: 192.168.56.9 Virtual IP: 192.168.56.110
And after it, I added below Firewalld rule:
# firewall-cmd --add-rich-rule='rule protocol value="vrrp" accept' --permanent # firewall-cmd --reload # # firewall-cmd --list-all FedoraServer (active) target: default icmp-block-inversion: no interfaces: enp0s3 enp0s8 sources: services: dhcpv6-client http ssh ports: protocols: masquerade: no forward-ports: source-ports: icmp-blocks: rich rules: rule protocol value="vrrp" accept
But I can't ping my Virtual IP address:
# ping 192.168.56.110 PING 192.168.56.110 (192.168.56.110) 56(84) bytes of data. ping: sendmsg: Operation not permitted ping: sendmsg: Operation not permitted ping: sendmsg: Operation not permitted ping: sendmsg: Operation not permitted ping: sendmsg: Operation not permitted
And cURL doesn't show anything too:
# curl -l 192.168.56.110
Is it related to the Firewalld?
I don't know. An easy way to check is to disable firewalld then check if it works.
Also make sure you enabled VRRP is the correct zone. Looks like you added it to the default zone.