More information is:
# firewall-cmd --get-active-zones
FedoraServer
interfaces: enp0s3 enp0s8
# firewall-cmd --get-default-zone
FedoraServer
# systemctl stop firewalld.service
#
# ping 192.168.56.110
PING 192.168.56.110 (192.168.56.110) 56(84) bytes of data.
ping: sendmsg: Operation not permitted
ping: sendmsg: Operation not permittedThank you.
More information are:
What is the correct zone for the VRRP?
On Wednesday, April 14, 2021, 09:59:44 PM GMT+4:30, Eric Garver <egarver(a)redhat.com>
wrote:
On Tue, Apr 13, 2021 at 08:15:05PM -0000, Jason Long wrote:
Hello,
I used
https://tecadmin.net/ip-failover-setup-using-keepalived-on-centos-redhat/...
tutorial to configure Keepalived on two CentOS web servers:
Server 1: 192.168.56.7
Server 2: 192.168.56.9
Virtual IP: 192.168.56.110
And after it, I added below Firewalld rule:
# firewall-cmd --add-rich-rule='rule protocol value="vrrp" accept'
--permanent
# firewall-cmd --reload
#
# firewall-cmd --list-all
FedoraServer (active)
target: default
icmp-block-inversion: no
interfaces: enp0s3 enp0s8
sources:
services: dhcpv6-client http ssh
ports:
protocols:
masquerade: no
forward-ports:
source-ports:
icmp-blocks:
rich rules:
rule protocol value="vrrp" accept
But I can't ping my Virtual IP address:
# ping 192.168.56.110
PING 192.168.56.110 (192.168.56.110) 56(84) bytes of data.
ping: sendmsg: Operation not permitted
ping: sendmsg: Operation not permitted
ping: sendmsg: Operation not permitted
ping: sendmsg: Operation not permitted
ping: sendmsg: Operation not permitted
And cURL doesn't show anything too:
# curl -l 192.168.56.110
Is it related to the Firewalld?
I don't know. An easy way to check is to disable firewalld then check if
it works.
Also make sure you enabled VRRP is the correct zone. Looks like you
added it to the default zone.