I'm having a failover issue with a Palo Alto active/passive pair connected to a CradlePoint modem. The CradlePoint is in IP pass-through mode.
The site was originally set up with the primary PAN as the active one. No one tested failover during set up.. Recently they had a power outage and when power was restored, there was no connectivity from any of the connected LANs to WAN.
It was determined that the primary PAN came back up as the active one. An on-site tech logged in to the primary PAN and manually failed over to the backup and everything was able to reach out to the WAN from the backup PAN.
When failing over back to the primary PAN, nothing can reach the WAN again.
What could cause these symptoms? I'm not super familiar with how pass-through works. I thought it should be seamless but it doesn't appear that the CradlePoint is passing through the IP address after the failover. The PAN is configured as a DHCP client.
I'm not really sure where to begin troubleshooting. I confirmed the HA is configured correctly. The pairs are synchronized and everything matches. Nothing in the logs suggests any errors during failover. The on site tech walked me through the wiring on the phone and everything seems to be correct..
Any ideas?
No comments:
Post a Comment