cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
102
Views
5
Helpful
1
Replies
Beginner

5k vpc to firewall problem

Dear community

 

i'm trying to implement the following design for the data center firewall (PaloAlto-Active Passive) connected to Nexus 5k vpc.

we are facing a problem with the port-channels, only one is active and the other one is down. for example (PO110 up, PO111 down). if we disconnect PO110, PO111 will come up. we want access to both Nexus vpc, the right and left. the firewall is configured as aggregated interface (etherchannel) ae2.

and design changes, configuration, and recommendations is welcome. 

 

asdadssd.PNG

1 REPLY 1
Beginner

Re: 5k vpc to firewall problem

Hi @wael.vs ,

You cannot inter-connect 4 aggregated ports with 2x 2 aggregated ports.

You must split the PA aggregation into 2x 2 ports and manage an active/passive mechanism, or connect the 4 ports to a single VPC cluster and configure them as a single VPC.

 

Remi Astruc

 

CreatePlease to create content
Content for Community-Ad
August's Community Spotlight Awards