Who rated this post

Showing results for 
Search instead for 
Did you mean: 

What you have found aligns perfectly with the behavior you are seeing.

I can't see why a Netscaler or any other device would try to use or take over another system's MAC address, unless you got extremely unlucky and the Netscaler and the cluster happened to dynamically derive the exact same VMAC address for their use.  Here is how the Check Point cluster computes the VMAC to use:

First 24 bits

Unique constant value.


Next 8 bits

VSX Virtual System ID.

  • In a VSX Cluster:

    Virtual System ID

  • In a non-VSX Cluster


Last 16 bits

Unique value that the Management Server



assigns to each cluster object.

This makes the VMAC value unique for each managed cluster.

Unique value for each cluster

Updated 2023 IPS/AV/ABOT R81.20 Course now
available at maxpowerfirewalls.com
Who rated this post