Forum Discussion

jgranieri_42214's avatar
jgranieri_42214
Icon for Nimbostratus rankNimbostratus
Jan 26, 2015

Is there a special setup require for connection mirroring to work with route domains

I have a route domain 999 configured and the VIP's are configured for connection mirroring. The HA vlan is not within the route-domain only the default route-domain 0. I can see the FastL4 connections are not being mirrored and break during a 1 sec failover. any ideas?

 

do i have to create a route domain specific HA vlan and add it to the route-domain 999?

 

I do have AFM configured and I am allowing sys default tcp/udp ports between the HA self IP peers so I dont expect the AFM portion to be block the connection mirroring ports

 

3 Replies

  • If it doesn't violate your route domain policy, you could try making route domain 0 the parent of route domain 9999.

     

  • Hello Brad,

     

    Thanks for the reply, but we wanted to keep this strictly isolated, with no route leaking.

     

  • Hamish's avatar
    Hamish
    Icon for Cirrocumulus rankCirrocumulus

    Connection mirroring is ONLY available across the route domain 0 in versions >= 11.3.0 (Config won't load at all if you upgrade an 11.2.1 with the connection mirroring configured on a non rd0 route domain).

     

    Cn you check of the mirror traffic be being sent and received correctly? Do you get any connections being propagated to the standby unit? How many units in the cluster? >2 units are only supported form 11.4.1

     

    H