IPS Running Active/Active after reboot.

L2 Linker

IPS Running Active/Active after reboot.

I upgraded a few pair of IPS/IDS devices last night and ran into an odd issue I haven't seen when upgrading other devices before. They run, typically, in Active/Passive mode, so when I upgrade I suspend one, upgrade, reboot, unsuspend it, and then repeat the process on the other device.


Last night after I walked through this process the devices came active and stayed active, despite them both being up. I have had to suspend one of these IPS/IDS devices in several locations to ensure only one is active.


Does anyone know why this happened and what the resolution may be?


L7 Applicator

Re: IPS Running Active/Active after reboot.


Sounds like your devices went into split-brain and aren't able to see each others status, so they'll both actively be active assuming the other device is offline. I would look at you HA stats and ensure that the devices are properly communicating with eachother. 

L2 Linker

Re: IPS Running Active/Active after reboot.

Yes, what I have learned is that after a major upgrade the HA keys are no longer referenced accordingly and must be manually exported and imported to restore this connectivity.

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!