Hi I am quite new to Palo Alto firewalls, but have worked with different vendors before. When running a HA in Active/passive a central VIP for mgmt is usually setup, so you dont connect to the passive FW. From what i see there is no VIP for mgmt in the HA setup i am working on here. Is that something that is setup wrong or ? We have a dns name internally that points to one of the firewalls, but in case of failover this might end up being the passive node. hope someone can enlighten me.
... View more