- CheckMates
- :
- Products
- :
- CloudMates Products
- :
- Cloud Network Security
- :
- Discussion
- :
- Cross-zone traffic with Cloudguard GWLB
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Are you a member of CheckMates?
×- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Cross-zone traffic with Cloudguard GWLB
Hi there,
I deployed cloudguard R80.40 gateways in AWS using GWLB for TGW template. After reading some documentation I specifically made sure that cross-zone balancing is turned OFF and TGW attachment which contain gateways is in appliance mode.
To my surprise I noticed that traffic is hitting random gateways. Any ideas how to further troubleshoot this issue?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
By Default, AWS attempts to keep a zonal affinity for traffic, meaning that traffic sourced in an AZ maintains that AZ at each hop.
To remedy this behavior and to provide maximum HA coverage for the CGNS Auto Scaling Group, Check Point recommends enabling Cross Zone Load Balancing on GWLB. This feature allows GWLB to distribute traffic across all targets in all enabled AZ’s to provide greatest HA coverage. This feature will result in incurring inter-AZ data transfer charges.
Check Point’s CloudFormation deployments for GWLB enable Cross AZ load balancing by default.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi there,
This is very clear, however in cloudformation template you have parameter to enable/disable cross AZ balancing, where I selected "false" during initial deployment, but it still does cross AZ balancing.