cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

PA 3260 and using non dedicated as HA1 interface

Announcements

Changes to the LIVEcommunity experience are coming soon... Here's what you need to know.

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Reply
MP18
Cyber Elite
Cyber Elite
‎01-27-2020 01:38 PM
‎01-27-2020 01:38 PM

PA 3260 and using non dedicated as HA1 interface

We have 2 PA 3260  across Data Centres.

We tried to use Eth1/13 as HA1 port but under ha1 interfaces it does not show option to choose  eth1/13.

 

IS this by design that HA1 interface to be dedicated?

for now we used management as ha1 interface.

 

is this good to use management interface as ha1?

 

Regards

Mike

MP
0 Likes
Reply
vsys_remo
Cyber Elite
Cyber Elite
‎01-27-2020 02:35 PM
‎01-27-2020 02:35 PM

Did you configure eth1/13 as HA interface prior to selecting it in the HA config?

 

(I normally use the mgmt port as HA1 backup port in addition to either one of the dedicated or a DP interfaces)

0 Likes
Reply
MP18
Cyber Elite
Cyber Elite
‎01-27-2020 02:44 PM
‎01-27-2020 02:44 PM

Yes i config eth1/13 as HA interface.

MP
0 Likes
Reply
Brandon_Wertz
Cyber Elite
Cyber Elite
‎01-28-2020 06:52 AM
‎01-28-2020 06:52 AM

@MP18 wrote:

We have 2 PA 3260  across Data Centres.

We tried to use Eth1/13 as HA1 port but under ha1 interfaces it does not show option to choose  eth1/13.

 

IS this by design that HA1 interface to be dedicated?

for now we used management as ha1 interface.

 

is this good to use management interface as ha1?

 

Regards

Mike

Why can't you use the HA1 port even if the firewalls are across DCs?  (I'm guessing you're needing a fiber connection?)  

 

I've got a 5220 pair spreed across 2 DCs that are 800+ miles apart using HA1 in a switched environment w/o issue.

0 Likes
Reply
MP18
Cyber Elite
Cyber Elite
‎01-28-2020 07:09 AM
‎01-28-2020 07:09 AM

Yes it is a fiber connection connection between our Data centres for HA!

MP
0 Likes
Reply
Brandon_Wertz
Cyber Elite
Cyber Elite
‎01-28-2020 08:10 AM
‎01-28-2020 08:10 AM

@MP18 wrote:

Yes it is a fiber connection connection between our Data centres for HA!

Can you land this fiber into a switch?  Then plug copper from the switch into HA1?

0 Likes
Reply
BPry
Cyber Elite
Cyber Elite
‎01-28-2020 02:41 PM
‎01-28-2020 02:41 PM

@MP18 

The 3200 series, much like the 5200 series, will only allow ha1-a, ha1-b or management to be utilized for HA1. The 5200 series has the advantage of being able to utilize the aux-1 and aux-2 ports as HA1 interfaces. 

In this type of situation, I would recommend doing exactly what @Brandon_Wertz is saying and simply running HA1 through a switch and passing it to the PA as a copper handoff; this works perfectly fine and I'd recommend it before setting HA1 to the management interface. 

0 Likes
Reply
MP18
Cyber Elite
Cyber Elite
‎02-05-2020 07:42 AM
‎02-05-2020 07:42 AM

We are also checking with our PA SE if this is due to hardware or software.

Will keep everyone updated once we hear  from him

 

MP
0 Likes
Reply
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

Latest Blogs
Latest Posts
Privacy Policy Terms of Use
Copyright 2007 - 2021 - Palo Alto Networks