Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Highlighted

1470 cluster bad ping results to lan interfaces

Jump to solution

Hi,

I'm using the latest r77.20.87 (990173004) build and created a locally managed 1470 cluster. I noticed that pinging the lan vip, lan ip of node 1 and of node 2 is quite bad.

Often pings just fail but the webinterface works and traffic seems to flow normally towards internet.

The lan interfaces are in their own subnet with a routing switch. Connected to the routing switch are internal networks. I've created a vpn with another site and from that site I can ping without any loss towards the internal networks. But pinging to the firewall lan interfaces and vip, just fails quite a lot.

Is that a known issue?

Jeroen

0 Kudos
1 Solution

Accepted Solutions

R77.20 is very old but regarding your question:

I think you just hit this old limitation:

sk26874

So enabling fw_allow_simultaneous_ping (set it to 1) should help you solve this problem.

View solution in original post

5 Replies

R77.20 is very old but regarding your question:

I think you just hit this old limitation:

sk26874

So enabling fw_allow_simultaneous_ping (set it to 1) should help you solve this problem.

View solution in original post

Highlighted

Thanks a lot!

That fixed it and stopped us from worrying something is wrong.

We are actually using this setup with a transit network to a SD WAN setup and were also pinging through that. This means not through the default LAN.

I also used this sk42733 about "Connection from one side of the ClusterXL destined to the physical IP address of a non-Active cluster member on the other side of the ClusterXL fails"

with fwha_forw_packet_to_not_active and with fw_allow_simultaneous_ping active it now works perfectly and monitoring is happy 🙂

 

(and yes: R77.20 is old but that's the issue with SMB devices, they lag in features and version compared to big Gaia. I wish CP would use one OS everywhere just like most competitors do...)

I hope my reply helps others too.

0 Kudos
Highlighted
Employee++
Employee++

There is also a default limit on the max ping size that will be accepted, this can also be  changed.

Note the 1470 will never see R80.20.XX unfortunately. If this is a requirement migration to 1500 will need to be considered in future.

Highlighted
Tnx for the info about the ping size, good to know.

About the 1500 series, they are still gaia embedded though...so different way of troubleshooting and with their own series of bugs

but yes, we'll use them for future sites and if possible, centrally managed, as the SmartConsole and central logging is so much better than the webui.
0 Kudos
Highlighted
Admin
Admin
Still Gaia Embedded.
0 Kudos