trouble creating cluster interface in cluster XL

**kashif** · 2020-05-01

i am having trouble in creating a cluster interface in the smartconsole. Management server is running R80.30 and security servers (2 nodes) are running R80.10.

I have created virtual interfaces on security servers without any problem but when i try to create cluster interface in the smartconsole i get errors for both nodes. cluster interface get created but it does not appear in cphaprob -a if.

Is it due to different versions of mangement server and security servers or i am missing something.

appreciate help in this case.

Click image for larger version.

Name: Skjermbilde.PNG
Views: 677
Size: 95.3 KB
ID: 1439

Click image for larger version.

Name: Skjermbilde2.PNG
Views: 675
Size: 102.5 KB
ID: 1440

the error messages appears for both nodes.

**Bob_Zimmerman** · 2020-05-04

The first screenshot is telling you someone else is making changes to gate01, so you can't make your changes.

The second screenshot is telling you it doesn't like something about the change you are trying to make. Generally an invalid character in an interface name, or the like.

Does the new interface still appear in the cluster object?

Have you pushed policy since adding the new interface?

**mrbob** · 2020-05-05

Hi,

I would like to tag onto this thread. I'm a colleague of original poster, we fixed the bit with permissions.

The problem with creating a new VLAN interface is still there, hope someone can see what we have missed.

- Both Gateways have eth5 - trunked interface - with existing VLAN layer 3 sub-interfaces

- Added a new interface to both nodes
-- node1:
-- add interface eth5 vlan 46
-- set inteface eth5.46 ipv-address 192.168.x.2 mask-length 20
-- save config
-- node2
-- add interface eth5 vlan 46
-- set inteface eth5.46 ipv-address 192.168.x.3 mask-length 20
-- save config

- created VLAN on the switches, allowed on all tagged ports
- verified that I can ping .2 and .3

- added Cluster interface in SmartDashboard
-- gateways & servers -> doubleclicked on the clusterXL resource -> network management
-- actions -> new interface
--- network type : cluster
--- ipv4: 192.168.x.1 / 20
--- member IPs: added node01 and node02 ipv4 addresses and mask-length
--- clicked OK to create
-- clicked Get Interfaces -> Get Interfaces With Topology
- in SmartDashboard the interface now looks identical to other sub-interfaces
- did a policy install, no errors.

- unable to ping 192.168.x.1 from server on different VLAN, from both gateways, and from a server placed on the VLAN with .x.1 as gateway
- logged on the gateway web GUI, the interfaces are marked as up and looks normal.
- checked 'cphaprob -a if' and it does not list the interface. other cluster interfaces are listed.

what step have we missed? why doesnt 'cphaprob -a if' show the cluster IP?

**Bob_Zimmerman** · 2020-05-05

Originally Posted by mrbob

- added Cluster interface in SmartDashboard
-- gateways & servers -> doubleclicked on the clusterXL resource -> network management
-- actions -> new interface
--- network type : cluster
--- ipv4: 192.168.x.1 / 20
--- member IPs: added node01 and node02 ipv4 addresses and mask-length
--- clicked OK to create
-- clicked Get Interfaces -> Get Interfaces With Topology

So you're aware, the last step in that list undid all the earlier steps in that list. That button exists specifically for people who don't want to build the interface themselves. I would guess that put the interface definition in the object in a bad state. Try deleting the interface definition in the cluster object, then either using Get Interfaces or building it manually.

**fw1engineer** · 2020-05-14

Did you re-add in the cluster interface after you did the get topology??

Originally Posted by mrbob

Hi,

I would like to tag onto this thread. I'm a colleague of original poster, we fixed the bit with permissions.

The problem with creating a new VLAN interface is still there, hope someone can see what we have missed.

- Both Gateways have eth5 - trunked interface - with existing VLAN layer 3 sub-interfaces

- Added a new interface to both nodes
-- node1:
-- add interface eth5 vlan 46
-- set inteface eth5.46 ipv-address 192.168.x.2 mask-length 20
-- save config
-- node2
-- add interface eth5 vlan 46
-- set inteface eth5.46 ipv-address 192.168.x.3 mask-length 20
-- save config

- created VLAN on the switches, allowed on all tagged ports
- verified that I can ping .2 and .3

- added Cluster interface in SmartDashboard
-- gateways & servers -> doubleclicked on the clusterXL resource -> network management
-- actions -> new interface
--- network type : cluster
--- ipv4: 192.168.x.1 / 20
--- member IPs: added node01 and node02 ipv4 addresses and mask-length
--- clicked OK to create
-- clicked Get Interfaces -> Get Interfaces With Topology
- in SmartDashboard the interface now looks identical to other sub-interfaces
- did a policy install, no errors.

- unable to ping 192.168.x.1 from server on different VLAN, from both gateways, and from a server placed on the VLAN with .x.1 as gateway
- logged on the gateway web GUI, the interfaces are marked as up and looks normal.
- checked 'cphaprob -a if' and it does not list the interface. other cluster interfaces are listed.

what step have we missed? why doesnt 'cphaprob -a if' show the cluster IP?