Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 6 replies
  • Answers 1 answer
  • Subscribers 27 subscribers
  • Views 10066 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

XG230 - High Availability - Unable to connect with peer device

Leebtish

Hi all,

Hoping someone on the community can assist with the set up of HA. We have 2 x XG 230 devices, both have been registered, both have the same firmware. I have followed this article to the letter  -https://community.sophos.com/kb/en-us/123174 to set up HA. When I try to enable HA I receive the error "Unable to connect with peer device".

I logged a call with Sophos support and they confirmed the configuration is correct. The app log showed the error "peer sanity check failed" when trying to enable HA. Sophos support advised to try and use a cross over cable to for the HA port. However, the article above states that a straight through or cross over cable can be used. I can ping between the 2 devices using the straight through cable and I can't believe that the ports on the XG devices would not allow for a straight through cable to be used. Most modern switches and routers are capable of Auto MDI-X.

Does anyone have any suggestions? This is delaying our implementation of our new XG devices as we need both running in sync.

Thanks for any help!

Cheers

Lee 



This thread was automatically locked due to age.
Parents
  • 0

    We used a cross over cable in each case where we have HA pairs and it works fine, I would recommend not relying on auto crossover capabilities for any critical connections as it slows down reconnects and is a potential reliability issue.

  • 0 in reply to CMR

    Hi there,

    We tried using a cross over cable but we are still receiving the same error. Unable to connect with peer device. I'm waiting on Sophos support to come back to me.

    Any other suggestions to troubleshoot this issue?

    Thanks

  • 0 in reply to Leebtish

    Are they both the same hardware revision?

    What licences do you see on each, you should have all on the primary and everything on evaluation on the auxiliary?

    Kind regards,

    Charles

  • 0 in reply to CMR

    Hi Charles,

    Thanks for replying to my issue. This was recently resolved by Sophos support. I stupidly had assigned the same subnet for VPN users as the dedicated HA port so it was never going to work :)

    Once we used a different subnet for HA it worked first time with no issues.

    Thanks to everyone for responding, hopefully this thread may help someone else who has a similar issue and the set up looks ok.

    Thanks

    Lee

  • 0 in reply to Leebtish

    LOL, no worries, if was wondering what else it could be!  Glad you got it fixed.

    Cheers, Charles

Reply Children
No Data