I'm noticing an issue in the lab where a VyOS and Sophos XG are both on the same ESX host. The network is using OSPF with custom timers and all devices form the proper adjacencies, except when the XG falls out of the network. When it comes back in, it only forms an adjacency with the upstream Cisco ASA firewall, but does not form with the VyOS and the core switch (also Cisco).
The vswitch is in promiscuious mode, and I'm wondering if some Sophos function is eating some of the packets before the adjacencies form. When the VyOS is rebooted all adjacencies come back as expected.
Next steps are to separate the XG and the VyOS to different ESX hosts and see if the issue persists, after that I will take some packet captures. Anyone see something like this before?
No comments:
Post a Comment