The bypass switch detects heartbeat from Palo Alto firewall to determine if it is alive.
What happens if, by any chance, PANOS become unresponsive but the hearbeat ping is still alive? will the bypass mode be ON?
anyone having this experience with bypass switch deployment before?
Please look at the following doc page 45 which discuss the deployment scenario with bypass switch.
Hope this helps.
As far as my understanding Firewall will have a policy to allow ping and icmp to pass through and respond at data plane level.
If interface goes down or unresponsive then by pass switch will by pass firewall.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!
The Live Community thanks you for your participation!