It was our external router. It was ignoring the Multicast MAC address that the cluster was sending out. We have added a static ARP entry for it and it is now working. Thanks for the input.
Chris -----Original Message----- From: Daniel Fischer (J) [mailto:[EMAIL PROTECTED]] Sent: December 18, 2002 4:59 PM To: [EMAIL PROTECTED] Subject: Re: [FW-1] CLusterXL on Windows 2000 Try switching to HA New Mode instead of load sharing and if things start working, then your outside switch is the problem. If it's the case and your outside switch is a cisco switch, let me know... I've had a discussion with a good cisco engineer today and we got things working on a 2924, tomorrow I will try the same thing on a 5505. Thanks DF -----Original Message----- From: Christopher Collins [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 18, 2002 3:49 PM To: [EMAIL PROTECTED] Subject: [FW-1] CLusterXL on Windows 2000 Does anyone have any experience running Check Point NG FP3 on Windows 2000 using ClusterXL for Load Sharing? We have everything working for the internal network and both DMZs but the external side is not accepting packets. IE. If we ping our external router, the packet is accepted by the firewall and with a sniffer on the outside, we see the packet hit the router - which then responds with an Echo Reply. The firewall never picks up that response. We have run the same tests with HTTP and the same thing happens. It seems like there is something misconfigured with the cluster IP or MAC address of the external NICs. Both firewalls worked perfectly before they were amalgamated into the cluster. Anyone have any suggestions? Chris ================================================= To set vacation, Out Of Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= ================================================= To set vacation, Out Of Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= ================================================= To set vacation, Out Of Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
