Cluster configuration with single public IP

Strongiukas — Fri, 28 Apr 2023 13:49:46 GMT

Hello,

I have a problem configuring a second internet link.

On that link I have only one public IP, but I have a cluster of two appliances.

I put IP addresses on both members: 192.168.79.1 and 192.168.79.2. And VIP I set as a public ip address.

But when I try to set static route to gw IP- traffic is sent through wrong (main) interface,

In Administration guide I read, that I need to mark "local scope". But if I do that- then I can't add IP as a gateway, but only interface. At that moment CP start sending packet trough correct interface, but still "time out".

Problem is- I don't know how to route specific traffic to second gw.

Maybe I'm missing something?

Re: Cluster configuration with single public IP

Bob_Zimmerman — Fri, 28 Apr 2023 14:02:38 GMT

When sending traffic through a router in a different IP network than the cluster members' real addresses, you need two routes on each member. One to tell the members how to get to the gateway, and one to tell them to go through the gateway to get somewhere else. For example:

set static-route 10.20.30.40/32 nexthop gateway logical eth1 on set static-route default nexthop gateway address 10.20.30.40 on

topic Re: Cluster configuration with single public IP in Firewall and Security Management

Cluster configuration with single public IP

Re: Cluster configuration with single public IP