AnsweredAssumed Answered

ClusterXL Different Subnet Configuration

Question asked by Alex Birkovsky on Mar 22, 2018
Latest reply on Mar 27, 2018 by Alex Birkovsky

Hi,

I'm trying to do a test upgrade from a Cluster XL R77 Secure Platform to R80.10 GAIA . I've upgraded the Managment Server and setup two new Gateway servers with R80.10. The Management Server imported all the old rules and pushes them successfully to the new Gateways. My problem seems to be that I can't get routing to work properly once I make the test platform live. My network config is as follows, some IP's are changed.

 

Firewall IP from provider:              111.111.251.26

Firewall Gateway from provider:   111.111.251.25

Internal Network:    111.111.74.0/24

Internal Gateway IP: 111.111.74.1

Sync: 10.0.0.1 and 10.0.0.2

 

I've setup the Firewall IP (111.111.251.26) as a Virtual IP between the two Clusters Members on the 10.10.10.1 and 10.10.10.2 IP's. I've setup the Internal Gateway as a Virtual IP (111.111.74.1) on 111.111.74.3 and 111.111.74.4.

 

On both Gateway Servers in the GUI I set the IPv4 routing as follows:

Default   111.111.251.25 eth0

Static 111.111.74.0/24 LOCAL eth1

 

Without clustering, the firewall works fine but with Cluster XL enabled the routing fails and I'm not sure where. I tried copying the routing tables from the R77 but they're still not working when I turn the old stuff off and plug the new stuff in. I thought it could be ARP cache and I tried clearing everything on the main switch and firewall but that didn't resolve it. I tried spoofing MAC addreses from the old servers to the new ones.

 

Any clues on where I'm going wrong with this would be apperciated!

 

Thank you!

Outcomes