HA State Sync not working

Started by niei, May 21, 2025, 05:04:01 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
May 21, 2025, 05:04:01 PM
Hi Everyone,

I noticed that when my firewalls fail over for a update or when I force a CARP failover my RDP Session disconnects.
I have configured the State Sync on both Firewalls (see attached fw01-hasettings.png and fw02-hasettings.png) but the state counts on the secondary do not match the primary by a long shot! Around 70'000 states on the primary and around 30 states on the secondary.
The Firewalls Rules should be in place to allow the state sync.
  On both Firewalls -> Allow IPv4 PFSYNC Any Source Any Port to Any Dest Any Port

FYI; My secondary Firewall (fw02) is master of the CARP IPs at the moment, i don't know why, but the state sync problem occured before this problem. The state sync also has never worked previsously I think.
FYI2; The firewalls are connected via a direct lagg with 5 1g copper cables.

Best Regards,
niei
- NIEI
Redundant Sophos XG210
Print
Go Up Pages1
User actions