This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
Accept
Reject

HA Clustering Info

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

HA Clustering Info

VFaticati
L1 Bithead

‎06-09-2022 06:19 AM

Hi all,

i have a question for all:

 

i have two datacenter  in two different city. The datacenters comunication in Layer 2 witn VRRP.

In primary DataCenter (active) i have two FW in Active/Passive (Peer HA), i would configurate a new FW in secondary data center (in passive mode), same model FW, it's possbile? how to configuration this scenario?

 

Thank you.

 

V.A

0 Likes Likes
6 REPLIES 6

OtakarKlier
Cyber Elite
Cyber Elite

‎06-09-2022 07:45 AM

Hello,

Possible yes since your HA interfaces can be any of the interfaces on the PAN. My biggest question would be why? Have the secondary data center PAN standalone and active. You can control routing via OSPF and route metrics.

 

Just my thoughts, I'm sure you have specific requirements.

 

Regards,

0 Likes Likes

VFaticati
L1 Bithead

‎06-09-2022 07:48 AM

the datacenter passive, it's work only for disaster recovery. 

0 Likes Likes

OtakarKlier
Cyber Elite
Cyber Elite

‎06-09-2022 07:51 AM

Hello,

I've done similar configs, and my DR data center was active. just disable the inbound NAT's. However you should be able to set it up the way you described.

Just a thought.

0 Likes Likes

VFaticati
L1 Bithead
In response to OtakarKlier

‎06-09-2022 08:02 AM

OK so every FW in the cluster in Active/Passive I have to configure HA1, HA1-Backup, HA2, HA2-Backup and H4, HA4-Backup and all interconnected? Are there any guides?

0 Likes Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Copyright 2007 - 2023 - Palo Alto Networks