The information you are about to copy is INTERNAL!
DO NOT share it with anyone outside Check Point.
|
Traffic through ClusterXL High Availability mode is interrupted when Standby member is rebooted
|
Technical Level
|
| Solution ID |
sk120073 |
| Technical Level |
|
| Product |
ClusterXL, Cluster - 3rd party |
| Version |
R77 (EOL), R77.10 (EOL), R77.20, R77.30 (EOL), R80.10 (EOL) |
| Platform / Model |
All |
| Date Created |
17-Aug-2017
|
| Last Modified |
24-Oct-2018
|
Symptoms
Cause
Chain of events:
- When a cluster member boots up, it sends Gratuitous ARP Request packets through its cluster interfaces.
- These GARP packets are sent with the following data:
- Sender Hardware Address = MAC address of the local physical interface
- Sender Protocol Address = Cluster Virtual IP defined on that cluster interface
- Target Hardware Address = MAC address of the local physical interface
- Target Protocol Address = Cluster Virtual IP defined on that cluster interface
- Network devices (Routers, Switches) that until now held the ARP entry "Cluster-VIP is at MAC-of-Active-member",
receive these GARP packets and update their ARP tables with the new association "Cluster-VIP is at MAC-of-Standby-member".
- Network devices now send traffic to the MAC address of the Standby member.
- By design, Standby member does not process any traffic from the network.
- Active member periodically sends its own GARP packets (to keep the network devices updated).
- Traffic issue continues until GARP packets are received from the Active member.
Solution
|
Note: To view this solution you need to
Sign In
.
|
