I have recently configured a Nokia IP350 Cluster with IPSO3.7. I 'm running NGAI and everything works fine except when I do my failover testing. If I shut down one of the firewalls all sessions failover and it is fine but when I pull one of the leads on the master in the cluster all traffic stops routing through the cluster until I replace the lead. It then takes 45 seconds to come back online. This happens when I stop the firewall module on the master as well. (cpstop) which leads me to believe that firewall 1 monitoring is not working either.
I tried moving the firewalls of the Cisco switches and no difference as I thought the reconvergence may be related to port fast and spanning tree. Is this the way clustering is supposed to work? I am using the a cluster network and a separate firewall sync network. The only error I am seeing in the logs on the firewall is "PROCESS CONTINUALLY RESTARTING" when it aknoweledge an interface is down.
As I understand it clustering performs load balancing with failover. That is partly right but I am not sure if this is a limitation!
FB
I tried moving the firewalls of the Cisco switches and no difference as I thought the reconvergence may be related to port fast and spanning tree. Is this the way clustering is supposed to work? I am using the a cluster network and a separate firewall sync network. The only error I am seeing in the logs on the firewall is "PROCESS CONTINUALLY RESTARTING" when it aknoweledge an interface is down.
As I understand it clustering performs load balancing with failover. That is partly right but I am not sure if this is a limitation!
FB