Firewall constant disconnection from Panorama
31008
Created On 02/27/19 23:12 PM - Last Modified 09/27/20 21:17 PM
Symptom
Firewall constantly disconnects and reconnects to Panorama and the same can be seen in the system log on Firewall
Monitor -> Log -> System
2018/10/15 21:09:38 2018/10/15 21:09:38 high general general 0 0018010xxxx6 Disconnected from Panorama Server: 192.168.168.159 , source: 192.168.168.9 >>>>>>>>>Disconnection and re-connection happen very frequently
2018/10/15 21:09:18 2018/10/15 21:09:38 medium general general 0 0018010xxxx6 FW has lost connection to panorama2, no log will be forwarded 2018/10/15 21:09:07 2018/10/15 21:09:38 info general general 0 0018010xxxx6 Connected to Panorama Server. 192.168.168.159 Port:3978, initiated by 192.168.168.9 Port:56974 2018/10/15 21:09:07 2018/10/15 21:09:38 high general general 0 0018010xxxx6 Disconnected from Panorama Server: 192.168.168.159. , source: 192.168.168.9
Environment
- Panorama- VM - Vmware
- Firewall - All Hardware and Virtual machine Platforms
- Software version: 8.x.x
Cause
On the firewall, Panorama server settings, same Panorama server IP address is added in first and second entry, because of which the firewall tried to connect to Panorama server on 2 different sockets because of which the previous connection is disconnected
Resolution
- On the firewall Go to Device -> Setup -> Management -> Panorama settings -
- Make sure that same Panorama IP address is not entered under Panorama servers columns twice.
Additional Information
NOTE:
In this scenario, you will also see Duplicate Traffic logs on Panorama due to constant disconnection and re-connection.
#duplicate traffic logs on Panorama
#duplicate traffic logs Panorama