Support Center > Search Results > SecureKnowledge Details
Traffic does not pass correctly after ISP Redundancy fail-over when Gaia OS Cloning Group is used
Symptoms
  • Traffic does not pass correctly after ISP Redundancy fail-over (due to current ISP Link going down).

  • Output of "ip route get <Destination_IP_Address>" command (in Expert mode) shows that the nexthop default gateway did not change to that of new active ISP Link (i.e., nexthop default gateway of the failed IPS Link is still used).

Cause

Default Gateway in IPS Redundancy configuration does not change upon ISP Link failure on Security Gateway / Cluster when Gaia OS Cloning Group is active.

  1. When ISP Link is down, the $FWDIR/bin/cpisp_update script tries to reconfigure the nexthop default gateway by running the Clish commands like "set static-route default nexthop gateway address...".
  2. Due to Gaia OS Cloning Group, this command fails:
    CLINFR0699 This command belongs to a cloning group synchronized feature and therefore cannot be executed in normal mode.

Solution
Note: To view this solution you need to Sign In .