 | ||
 ARP Issue with cluster as default gateway for client? | ||
| CPUG | |
| The Check Point User Group | |
| A Resource For The Check Point Community. Fast. Useful. Independent. | |
|
| |||||||
 |
| | LinkBack | Thread Tools | Display Modes |
 2007-09-19 | |||
| |||
 ARP Issue with cluster as default gateway for client? Hi Folks, I have an issue with a checkpoint ClusterXL cluster acting as a gateway for a number of clients. This is a new setup so we've not had it working before. We are using Sunfire V210 boxes with Solaris 10 as the OS and Checkpoint R65. The Cluster is HA/New braodcast mode. No 3rd party utils are installed. We have created an interface on the two cluster nodes with a VLAN and configured the clients correctly. However the clients can't route using the cluster IP as the gateway. If I change the gateway to one of the cluster node IP's everything works fine! I cannot ping the cluster IP from a client on that subnet (but can ping the nodes), I can ping the cluster IP from a client on another subnet. It's very confusing. The topology is all correct as far as i can see. Running a few snoops on the interfaces, the cluster nodes see ARP whois requests being broadcast from the client, but dont respond to them. They do respond to their individual IP's though. As I mentioned the cluster interface is up and working as I can ping it from another subnet fine. I'm not sure what i've done wrong but if anyone could offer some pointers it would be appreciated. Last edited by GordonCopestake; 2007-09-20 at 00:52.  |
| 2007-09-19 | |||
| |||
| Re: ARP Issue with cluster as default gateway for client? Sorry, knew I would miss something! It's Solaris 10 and Checkpoint R65 |
| 2007-09-19 | |||
| |||
| Re: ARP Issue with cluster as default gateway for client? Sorry I haven't really worked with Solaris, however are using ClusterXL for the cluster or do you have a third party ha solution. I can't recall if ClusterXL runs on Solaris, maybe another of the Solaris users can clarify I have seen similar issues on Nokia if the Dashboard configured with ClusterXL rather then set to third party and then Nokia VRRP, which is why I ask the question about ClusterXL |
| 2007-09-19 | |||
| |||
| Re: ARP Issue with cluster as default gateway for client? Sorry, yes we are using Cluster XL I'll amend my original post to contain more detail |
| 2007-09-19 | |||
| |||
| Re: ARP Issue with cluster as default gateway for client? What cluster mode are you using. Are the gateways plugged into the same switch or 2 with a VLAN between them. If you are using Load Sharing with multicast mode it sounds like you don't have the settings right on the switch. |
| 2007-09-20 | |||
| |||
| Re: ARP Issue with cluster as default gateway for client? We are using HA/New and the 2 nodes are plugged into different switches with a VLAN for redundancy. We didn't want the switch to be a single point of failure. As far as I know the switch setup is fine. We have changed from Multicast to Broadcast in an effort to get this to work with no success. |
| 2007-09-20 | |||
| |||
| Re: ARP Issue with cluster as default gateway for client? Are you sure you have your netmasks correct on all of the clients and gateways. Also, when you were setup for multicast did you put the multicast arp entry in. |
| 2007-09-21 | |||
| |||
| Re: ARP Issue with cluster as default gateway for client? I have resolved this issue by stripping all the interfaces off one node, rebooting, then re-building the interface list. Fail over and repeat for the other node. I must have done something wrong as it works now, but for the life of me I can't see what. All subnet masks were correct and all broadcasts etc were correct. Confusing, but at least it works! |
|
| Thread Tools | |
| Display Modes | |
| |
Linear Mode
