Configure a High Availability (HA) Interface for HA Deployment
Table of Contents
Expand all | Collapse all
-
-
- Add a Branch
- Add a Data Center
- Add a Branch Gateway
- Configure Circuits
- Configure Internet Circuit Underlay Link Aggregation
- Configure Private WAN Underlay Link Quality Aggregation
- Configure Circuit Categories
- Configure Device Initiated Connections for Circuits
- Add Public IP LAN Address to Enterprise Prefixes
- Manage Data Center Clusters
- Configure a Site Prefix
- Configure a DHCP Server
- Configure NTP for Prisma SD-WAN
- Configure the ION Device at a Branch Site
- Configure the ION Device at a Data Center
- Switch a Site to Control Mode
- Allow IP Addresses in Firewall Configuration
-
- Configure a Controller Port
- Configure Internet Ports
- Configure WAN/LAN Ports
- Configure a Loopback Interface
- Configure a PoE Port
- Configure and Monitor LLDP Activity and Status
- Configure a PPPoE Interface
- Configure a Layer 3 LAN Interface
- Configure Application Reachability Probes
- Configure a Secondary IP Address
- Configure a Static ARP
- Configure a DHCP Relay
- Configure IP Directed Broadcast
- VPN Keep-Alives
-
- Configure Prisma SD-WAN IPFIX
- Configure IPFIX Profiles and Templates
- Configure and Attach a Collector Context to a Device Interface in IPFIX
- Configure and Attach a Filter Context to a Device Interface in IPFIX
- Configure Global and Local IPFIX Prefixes
- Flow Information Elements
- Options Information Elements
- Configure the DNS Service on the Prisma SD-WAN Interface
- Configure SNMP
-
-
- Prisma SD-WAN Branch Routing
- Prisma SD-WAN Data Center Routing
-
- Configure Multicast
- Create a WAN Multicast Configuration Profile
- Assign WAN Multicast Configuration Profiles to Branch Sites
- Configure a Multicast Source at a Branch Site
- Configure Global Multicast Parameters
- Configure a Multicast Static Rendezvous Point (RP)
- Learn Rendezvous Points (RPs) Dynamically
- View LAN Statistics for Multicast
- View WAN Statistics for Multicast
- View IGMP Membership
- View the Multicast Route Table
- View Multicast Flow Statistics
- View Routing Statistics
- Prisma SD-WAN Incident Policies
-
- Prisma SD-WAN Branch HA Key Concepts
- Configure Branch HA
- Configure HA Groups
- Add ION Devices to HA Groups
- View Device Configuration of HA Groups
- Edit HA Groups and Group Membership
-
- Configure Branch HA with Gen-1 Platforms (2000, 3000, 7000, and 9000)
- Configure Branch HA with Gen-2 Platforms (3200, 5200, and 9200)
- Configure Branch HA with Gen-2 Embedded Switch Platforms (1200-S or 3200-L2)
- Configure Branch HA for Devices with Software Cellular Bypass (1200-S-C-5G)
- Configure Branch HA for Platforms without Bypass Pairs
- Configure Branch HA in a Hybrid Topology with Gen-1 (3000) and Gen-2 (3200) Platforms
- Prisma SD-WAN Incidents and Alerts
Configure a High Availability (HA) Interface for HA Deployment
Learn how to create an HA interface for HA deployments.
| Where Can I Use This? | What Do I Need? |
|---|---|
|
|
Generation One ION devices (ION 1000, ION 2000, ION 3000, and ION 9000) use the control
port for the exchange of HA heart beat and manage the controller traffic between the
active and the standby device. The NextGen ION devices (ION 1200-S, ION 3200, ION 5200,
ION 9200) do not need a dedicated controller port with the introduction of
used-for-HA as a port type.
The used-for-HA interface (referred to as the
used-for-control interface prior to Release 6.3.1) exchanges
heartbeat between the two ION devices and also connects the standby device to the
controller through the active ION device. You can use this interface to send management
traffic like App Probe, NTP, SNMP, RADIUS, and IPFIX.
Starting with Release 6.3.1, the support for High Availability (HA) has been enhanced to
include compatibility with various interface types.
If you have configured the used-for-HA
interface and you want to downgrade to a version that does not support the
used-for-HA interface, contact Palo Alto Customer Support.
Used-for-HA is supported on all ION
platforms. Directly establishing the High Availability (HA) connection between devices
is recommended only in cases where there are no southbound LAN switches present and
exclusively only with 1200-S and 3200-L2 models with redundant ports.
Used-for-HA is supported on the following interfaces in HA
topology:
- Configure a Switch Virtual Interface (SVI) for HA Connectivity
- Configure a Sub-interface for HA Connectivity
- Configure a Main Interface for HA ConnectivityYou will need ION device software version 6.3.1 or higher to configure a main interface as a used-for-HA interface.