HA1 link between PA VM FWs deployed in Azure Cloud is down

HA1 link between PA VM FWs deployed in Azure Cloud is down

3975
Created On 03/29/21 15:49 PM - Last Modified 04/26/23 03:52 AM


Symptom


HA1 link is down while all required ports are open between both VMs. 

 

Environment


  • Palo Alto VM Firewalls(FW)
  • Azure Cloud
  • Supported PAN-OS
  • High Availability (HA)

Cause


The Firewalls are are in different VNETs. 

Resolution


The following should match between Primary and Secondary Firewalls as mentioned in the documentation Step 6.1. Ensure this is followed while deploying the secondary Firewall using GitHub template
  • Azure subscription. 
  • Name of the Resource Group. 
  • Location of the Resource Group. 
  • Name of the existing VNet into which you want to deploy the firewall, VNet CIDR, Subnet names, Subnet CIDRs, and start the IP address for the management, trust and untrust subnets.

Additional Information


High Availability Considerations on AWS and Azure
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u0000001UzACAU&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language