The information you are about to copy is INTERNAL!
DO NOT share it with anyone outside Check Point.
Traffic through ClusterXL High Availability mode is interrupted when Standby member is rebooted
| Solution ID |
sk120073 |
| Product |
ClusterXL, Cluster - 3rd party |
| Version |
R77, R77.10, R77.20, R77.30, R80.10 |
| Platform / Model |
All |
| Date Created |
17-Aug-2017
|
| Last Modified |
24-Oct-2018
|
Symptoms
Cause
Chain of events:
- When a cluster member boots up, it sends Gratuitous ARP Request packets through its cluster interfaces.
- These GARP packets are sent with the following data:
- Sender Hardware Address = MAC address of the local physical interface
- Sender Protocol Address = Cluster Virtual IP defined on that cluster interface
- Target Hardware Address = MAC address of the local physical interface
- Target Protocol Address = Cluster Virtual IP defined on that cluster interface
- Network devices (Routers, Switches) that until now held the ARP entry "Cluster-VIP is at MAC-of-Active-member",
receive these GARP packets and update their ARP tables with the new association "Cluster-VIP is at MAC-of-Standby-member".
- Network devices now send traffic to the MAC address of the Standby member.
- By design, Standby member does not process any traffic from the network.
- Active member periodically sends its own GARP packets (to keep the network devices updated).
- Traffic issue continues until GARP packets are received from the Active member.
Solution
|
Note: To view this solution you need to
Sign In
.
|
