Discrepancy between port led status on HA Active Standby Firewall.

Discrepancy between port led status on HA Active Standby Firewall.

14737
Created On 04/28/20 01:44 AM - Last Modified 11/12/20 02:27 AM


Symptom


  • Discrepancy between port LED status on HA standby Firewall.
  • The LED Status on Active Firewall is Green, whereas the Standby Firewall is Red.

Environment


  • Any PAN-OS 
  • Palo Alto Firewall
  • High Availability Active/Passive Configured.

Cause


The ports on the standby Firewall are set to shutdown by default.

Resolution


Set the Port Status on Standby Firewall to "Auto". This will cause the Firewall ports to negotiate and set the port status to match the connected ports.



 

Additional Information


Note:
  • If the remote ports connected to standby firewall is down, then the standby ports will also be down.
  • Even though the HA standby port is UP, it will not pass traffic or respond to ARP packets
  • Refer documentation for more details. (Page 309, See section STEP 12 | (Optional) Modify the link status of the HA ports on the passive firewall.


 
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000PPpgCAG&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language