This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
About u5801
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About u5801
08-18-2015
3Posts
0Likes
0Solutions
Aug 18, 2015Last Visited
User
Activity
User
Profile
Latest posts by u5801
| Subject | Views | Posted |
|---|---|---|
| 4945 | 02-28-2012 08:19 AM | |
| 5102 | 02-15-2012 04:28 AM | |
| 6460 | 02-15-2012 01:31 AM |
User Badges
Community Statistics
| Member Since | 02-09-2011 01:40 PM |
| Date Last Visited | 08-18-2015 09:07 AM |
| Posts | 3 |
02-28-2012
08:19 AM
Hi, thank you for your answer. There is only one thing I'm still not sure about-lets says I have two PA 2020s and I put the IP address 192.168.1.1 on the first and 192.168.1.2 on the second and then join them in an HA cluster and sync policies. When the primary device goes down, does the secondary device take over 192.168.1.1 and 192.168.1.2 or does it replace 192.168.1.2 with 192.168.1.1? Thanks
... View more
02-15-2012
04:28 AM
Hi, Thank you for your answer, but either I'm not understanding your answer or I didn't make myself clear. To give an example, Check Point firewalls allow you to set up cluster members to share an IP address, but only the active member receives and processes traffic to it. This is useful for next-hop addresses-set your downstream router to use the virtual ip address, and whichever gateway is the active member receives traffic to that address. When the primary gateway fails the secondary address takes over the virtuall ip address and begins to receive and process traffic destined to that address. I cannot find a way to create this 'virtual' address in Palo Alto, and as such I don't understand how you would set a default gateway to an address if a HA cluster doesn't have a "floating" IP address. Thank you again
... View more
02-15-2012
01:31 AM
Hello, I'm having trouble understanding how Active/Passive HA works in Palo Alto. In other solutions the active device has a virtual address on top of its physical interface address, and when the active device goes down the passive device 'takes over' by sending a garp notifying devices that it is now the virtual address receiver. I can find a floating IP address in Active/Active, but nothing in Active/Passive. Thanks
... View more
- Tags:
- active!passive
- ha
- vip
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
08-18-2015
09:07 AM
|
Latest Tags
No tags yet
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks