Aggregate Interface Down on Passive Device

• Aggregate Interface is showing down on Passive device and is up on Active device.
• Under "Device -> High Availability -> Active / Passive settings", Passive state link is set to auto ( In this state all the interfaces on the devices will be UP)
• For aggregated interfaces, Firewall in passive mode will not participate in LACP pre-negotiations due to which it will show as down.
• Devices such as PA-3000 Series, PA-5000 Series, and PA-7000 Series have an option available under LACP tab, select Enable in HA Passive State which will allow passive device to engage in LACP pre-negotiation.

Network -> Interfaces -> AE ( Interface ) -> Enable in HA Passive State

• Only PA-3000 Series, PA-5000 Series, and PA-7000 Series firewall have option  to keep passive device aggregate interface up.

• This is expected behavior with devices that are not PA-3000 Series, PA-5000 Series, and PA-7000 Series firewall as the option " Enable in HA Passive State" is not available.

1. Expected behavior with all devices expect PA-3000 Series, PA-5000 Series, and PA-7000 Series firewalls. Option to Enable in HA Passive State is not available in other firewall models and Aggregated interface will show down.

• Check step number 14 in the below document for details