Availability and Redundancy Security Reflection - liamb8/sec440 GitHub Wiki

Problem:

Keepalived wouldn't start and kept failing.

Solution:

Make sure to check that the configuration was setup properly. Using spaces could sometimes end up being an issue with the configuration with Keepalived or HAProxy. Also check to make sure you name the file .conf as when Keepalived start it looks for a file named with the .conf extension. I accidentally named it .config and couldn't figure out why it wasn't working until I checked the status and saw that what the file it was looking for and what the file I had named it didn't match.

Problem:

Make sure to use a VRID address that is different from someone else for the WAN.

Solution:

When setting up VRRP I hadn't noticed at first that we were supposed to use a specific WAN VRID. Since it was the same as someone else's it was causing issues within the network.

Problem:

Port forwarding didn't work with the virtual address.

Solution:

Make sure to check the VRRP and VyOS config to make sure everything is correct. I went through looking for why this was an issue and later found that it was because the VRRP was in the fault state. One of the VyOS firewalls worked but the backup didn't so there was a discrepancy between the two. After fixing the discrepancy I was able to get it to work without an issue.