05-25-2017 12:00 PM
Having an issue with BFD. I have BFD configured between the Palo Alto and a couple of routers (BFD Single Hop). When a firewall failover occurs, this causes the BFD peering to drop and come back. I would not anticipate this to happen. This causes a unicast path between multihop BFD peers to drop in turn causing multihop BGP peerings to drop as well.
05-25-2017 03:33 PM
Looks to me a similar behaviour to the below:
05-26-2017 06:18 AM
I saw that document as well, and I agree. I was hoping to find something from Palo about what is synced and what is not, but I haven't been able to find anything.
05-26-2017 06:53 AM
Here is a document about what is synced and what not in active/active and active/passive clusters:
https://live.paloaltonetworks.com/t5/Tech-Note-Articles/High-Availability-Synchronization/ta-p/61190
05-26-2017 06:58 AM
Nice find...however, this is contradictive to the above thread...My firewalls are active/passive. This shows that in active/passive pairs the only thing that isn't synced are ICMP sessions. Doesn't say host sessions aren't synced in A/P pair.
05-26-2017 07:01 AM
Yes I see, probably a little outdated ...
05-26-2017 07:02 AM
However, your post helped me find this.
Which DOES say host information is not synced. Thank you!
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
