This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Help

Who rated this post

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Lesley
MVP Gold
MVP Gold
‎2025-04-17 12:53 PM

 

Important:

  • The "Sync" ports of all ElasticXL Cluster Members in the same ElasticXL Cluster must connect to the same Layer 2 broadcast domain (a dedicated Layer 2 switch, or a dedicated VLAN).

  • Only one ElasticXL Cluster is supported in the same Layer 2 broadcast domain (connecting Sync interfaces of different ElasticXL Clusters is not supported).

  • Configuring the Sync interface as VLAN Trunk is not supported.

  • ElasticXL Cluster sends all traffic over the Sync network in clear-text (non-encrypted).

  • ElasticXL Cluster automatically configures the IP address of the sync network to 192.0.2.0/24.

    If needed, later it is possible to change the IP address of the sync network.

ElasticXL Cluster renames the physical interfaces on the appliances:

  • The "Mgmt" interface becomes a subordinate interface in the Bond called "magg1".

  • The "Sync" interface is renamed to "eth1-Sync" and becomes a subordinate interface in the Bond called "Sync".

Lesley_0-1744918003286.png

 

Notes - Gaia OS does not show the bond interface "Sync" (or its subordinate interfaces) in Gaia Portal and in the Gaia Clish "set" commands. This is to prevent any changes to this infrastructure interface.

 

  • Does ElasticXL Cluster support a bond of Sync interfaces?

    Yes - the default configuration is a Bond called "Sync" that contains the eth1-Sync ("Sync") interface of the Security Appliance.

    By design, this interface is hidden.

So indeed bond should already be there. I am not sure if you add a SFP it will automatic add it to the SYNC. It think it picks it during the initial config. It should be possible if I read this know limitation. I would just indeed to add via gaia clish

PMTR-107433 ElasticXL Adding an unassigned interface to or from Sync bond leads to the flags reset and, as a result, it disrupts the ElasticXL detection and ElasticXL drops the packets.
-------
Please press "Accept as Solution" if my post solved it 🙂

View solution in original post

(1)
Who rated this post