I have an HA setup (standby/active). The standby firewall is not receiving updates from the active unit. The active units log states this:
HA Sync failed: Can't send PAR file: - SYNC DIRTY: refuse PAR file; box itself has a pending HA update
I'm not utilizing Control Center (CC), firewalls are managed via web GUI. So there is no clear way to clear the DIRTY SYNC , which is doable if I were using CC. Instead, I went the command line route:
On the primary and on the secondary box:
1. Log in at the command line interface.
2. Delete the .par file by typing following commands:
This did not work. standby unit still is NOT receiving updates. A further note, HA is going across a management switch via the firewalls management port, P1. A back to back connection which would be an additional link (private link), in an event of a switch failure, is not doable since CC is not being used. Overall, HA seems to be working fine outside of the above issue. Fail over works fine, it's just an update issue between the 2 units that I nor support has been able to resolve thus far.