HA Nokia Cluster topology

[s_baugh23]

Hi

I have an existing HA nokia pair running VRRP over multiple interfaces which is working. I fail to see any VRRP advertisements when I configure additional interfaces and add them into the cluster topology.
The original interfaces are working but the newly created interfaces are not, Any helpe would be greatly appreciated.

Cheers

[northlandboy]

Just to clarify, what steps have you followed?

You should have created the new interfaces using IPSO, then added the necessary VRRP config.

You should also have updated the cluster definition in Smart Dashboard, and updated each of the objects, and pushed policy.

Run fw monitor if you think that IPSO is generating the traffic, but Check Point is blocking it.

What does Voyager show under Monitor -> VRRP -> Interfaces?

[s_baugh23]

Hi

Yes, that's exactly what i have done.

ran fw monitor and no VRRP advertisements are seen for the new interfaces

Interfaces dont don't show up in VRRP monitor, even though they have been configured

[northlandboy]

Are those interfaces actually up?

If the interface is down, it won't show up on the VRRP monitor page.

Otherwise it will show up on VRRP monitor.

Can you post the ifconfig output for that interface, along with fw ctl iflist, and show vrrp interface from iclid?

[s_baugh23]

Just noticed from the logs that IPSRD daemon is complaining as I initially cofigured the new VRRP instances on different interfaces

[admin]# Oct 26 15:01:09 [LOG_ERR] mcvr_xlate[939]: Cannot apply ipsrd configuration: duplicate address 10.132.243.1 on interface eth-s3p2c0 VRID 51 and interface eth-s3p3c0 VRID 51

Oct 26 15:01:31 [LOG_ERR] mcvr_xlate[943]: Cannot apply ipsrd configuration: duplicate address 10.132.244.1 on interface eth-s3p1c0 VRID 51 and interface eth-s3p4c0 VRID 51


Cheers