Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 2 subscribers
  • Views 579 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Uplink goes down when activating HA

solae
I try to activate HA with 2 Sophos Virtual Appliance.

I have 2 Uplink interfaces and 3 Network interfaces and 1 HA-Link Interface, using VMWare ESXi 5.0.1.

Now, everytime i active High-Availibility, both Uplink-Interfaces change State to Down and Link to Error. I can't get them to work again, until i turn HA off.

After that, i need to reboot the Virtual Machine and the Device get a IP Adresse again.

DHCP while on HA: 
2012:09:26-00:10:30 fw01 dhcpc-sh: starting DHCP client

2012:09:26-00:10:30 fw01 dhclient: Internet Systems Consortium DHCP Client 4.1-ESV-R5

2012:09:26-00:10:30 fw01 dhclient: Copyright 2004-2012 Internet Systems Consortium.

2012:09:26-00:10:30 fw01 dhclient: All rights reserved.

2012:09:26-00:10:30 fw01 dhclient: For info, please visit www.isc.org/.../

2012:09:26-00:10:30 fw01 dhclient: 

2012:09:26-00:10:30 fw01 dhclient: Listening on LPF/eth4/00:1a:8c:f0:3a:64

2012:09:26-00:10:30 fw01 dhclient: Sending on   LPF/eth4/00:1a:8c:f0:3a:64

2012:09:26-00:10:30 fw01 dhclient: Sending on   Socket/fallback

2012:09:26-00:10:30 fw01 dhclient: DHCPREQUEST on eth4 to 255.255.255.255 port 67

2012:09:26-00:10:31 fw01 snmpd[9755]: NET-SNMP version 5.6.1

2012:09:26-00:10:33 fw01 dhclient: DHCPREQUEST on eth4 to 255.255.255.255 port 67

2012:09:26-00:10:34 fw01 dhclient: DHCPDISCOVER on eth5 to 255.255.255.255 port 67 interval 6

2012:09:26-00:10:36 fw01 dhclient: DHCPREQUEST on eth4 to 255.255.255.255 port 67

2012:09:26-00:10:40 fw01 dhclient: DHCPDISCOVER on eth5 to 255.255.255.255 port 67 interval 9

2012:09:26-00:10:43 fw01 dhclient: DHCPDISCOVER on eth4 to 255.255.255.255 port 67 interval 5

2012:09:26-00:10:48 fw01 dhclient: DHCPDISCOVER on eth4 to 255.255.255.255 port 67 interval 6

2012:09:26-00:10:49 fw01 dhclient: DHCPDISCOVER on eth5 to 255.255.255.255 port 67 interval 14

2012:09:26-00:10:54 fw01 dhclient: DHCPDISCOVER on eth4 to 255.255.255.255 port 67 interval 7

2012:09:26-00:11:01 fw01 dhclient: DHCPDISCOVER on eth4 to 255.255.255.255 port 67 interval 17

2012:09:26-00:11:03 fw01 dhclient: DHCPDISCOVER on eth5 to 255.255.255.255 port 67 interval 14

2012:09:26-00:11:17 fw01 dhclient: DHCPDISCOVER on eth5 to 255.255.255.255 port 67 interval 12

2012:09:26-00:11:18 fw01 dhclient: DHCPDISCOVER on eth4 to 255.255.255.255 port 67 interval 15

2012:09:26-00:11:23 fw01 dns-resolver[5003]: DNS server failed to contact!

2012:09:26-00:11:29 fw01 dhclient: No DHCPOFFERS received.

2012:09:26-00:11:29 fw01 dhclient: No working leases in persistent database - sleeping.

2012:09:26-00:11:33 fw01 dhclient: DHCPDISCOVER on eth4 to 255.255.255.255 port 67 interval 9

2012:09:26-00:11:42 fw01 dhclient: DHCPDISCOVER on eth4 to 255.255.255.255 port 67 interval 2

2012:09:26-00:11:44 fw01 dhclient: No DHCPOFFERS received.

2012:09:26-00:11:44 fw01 dhclient: Trying recorded lease XX.XX.112.83

2012:09:26-00:11:44 fw01 dhclient: bound: renewal in 11623 seconds.

2012:09:26-00:12:23 fw01 dns-resolver[5003]: DNS server failed to contact!



DHCP without HA: 
2012:09:26-00:16:21 fw01 dhcpc-sh: starting DHCP client

2012:09:26-00:16:21 fw01 dhcpc-sh: starting DHCP client

2012:09:26-00:16:21 fw01 dhclient: Internet Systems Consortium DHCP Client 4.1-ESV-R5

2012:09:26-00:16:21 fw01 dhclient: Copyright 2004-2012 Internet Systems Consortium.

2012:09:26-00:16:21 fw01 dhclient: All rights reserved.

2012:09:26-00:16:21 fw01 dhclient: For info, please visit www.isc.org/.../

2012:09:26-00:16:21 fw01 dhclient: 

2012:09:26-00:16:21 fw01 dhclient: Internet Systems Consortium DHCP Client 4.1-ESV-R5

2012:09:26-00:16:21 fw01 dhclient: Copyright 2004-2012 Internet Systems Consortium.

2012:09:26-00:16:21 fw01 dhclient: All rights reserved.

2012:09:26-00:16:21 fw01 dhclient: For info, please visit www.isc.org/.../

2012:09:26-00:16:21 fw01 dhclient: 

2012:09:26-00:16:22 fw01 dhclient: Listening on LPF/eth5/00:0c:29:67:63:a9

2012:09:26-00:16:22 fw01 dhclient: Sending on   LPF/eth5/00:0c:29:67:63:a9

2012:09:26-00:16:22 fw01 dhclient: Sending on   Socket/fallback

2012:09:26-00:16:22 fw01 dhclient: DHCPDISCOVER on eth5 to 255.255.255.255 port 67 interval 8

2012:09:26-00:16:22 fw01 syslog-ng[2857]: Configuration reload request received, reloading configuration;

2012:09:26-00:16:22 fw01 ulogd[3823]: SIGTERM received

2012:09:26-00:16:23 fw01 dhclient: DHCPREQUEST on eth5 to 255.255.255.255 port 67

2012:09:26-00:16:23 fw01 dhclient: DHCPOFFER from XX.XX.107.66

2012:09:26-00:16:23 fw01 dhclient: DHCPACK from XX.XX.107.66

2012:09:26-00:16:24 fw01 dhclient: Listening on LPF/eth4/00:0c:29:67:63:9f

2012:09:26-00:16:24 fw01 dhclient: Sending on   LPF/eth4/00:0c:29:67:63:9f

2012:09:26-00:16:24 fw01 dhclient: Sending on   Socket/fallback

2012:09:26-00:16:24 fw01 dhclient: DHCPREQUEST on eth4 to 255.255.255.255 port 67

2012:09:26-00:16:24 fw01 dhclient: DHCPACK from XX.XX.31.68


Any Ideas?


This thread was automatically locked due to age.
Parents
  • 0
    Hi, solae, and welcome to the User BB!

    This is just a guess.  This sounds like it could be related to the virtual MAC issue when two instances are run on the same physical server.  At the console of both instances, run cc set ha advanced virtual_mac 0

    Did that help?

    Cheers - Bob
  • 0 in reply to BAlfson
    Hi Bob

    I tried your Command, but got an Error:

    loginuser@fw01:/usr/local/bin > cc set ha advanced virtual_mac 0
    Panic: Can't find bfs section in '/usr/local/bin/confd-client.plx'


    Do you have a solution for this?

    Thanks, Michael

    EDIT: btw, i use Firmware version 9.002-12

    EDIT: The link is down as soon as i activate HA on my Master Device. At this Time the Slave isn't even running or connected.
Reply
  • 0 in reply to BAlfson
    Hi Bob

    I tried your Command, but got an Error:

    loginuser@fw01:/usr/local/bin > cc set ha advanced virtual_mac 0
    Panic: Can't find bfs section in '/usr/local/bin/confd-client.plx'


    Do you have a solution for this?

    Thanks, Michael

    EDIT: btw, i use Firmware version 9.002-12

    EDIT: The link is down as soon as i activate HA on my Master Device. At this Time the Slave isn't even running or connected.
Children
No Data