Kemp Support, how can we help?

The latest application delivery knowledge and expertise at your fingertips.

  1. Kemp Support
  2. Knowledge Base
  3. Platforms

HA pair goes into pacified state at the same time periodically

Updated

 

Information

 

Summary:

HA pair goes into pacified state at the same time periodically.
Environment:

Product: LoadMaster

Version: Any

Platform: Any

Application: Any
Question/Problem Description:

HA pair goes into pacified state at the same time periodically and virtual services stop responding.
Steps to Reproduce: Have a security scan hit the HA pair.
Error Message:

PAM: Authentication failure for illegal user
Defect Number:  
Enhancement Number:  
Cause:
  • Security scan hitting the LoadMaster were causing latency, which caused HA to fail. 
  • In the top right corner of the screen, you will see two boxes that indicate the nodes in your HA Pair.  A healthy partnership will display two green boxes, one with an "A" indicating the active node.  When the LoadMaster goes into a Pacified State, the box will turn blue.

  • When the unit reboots more than three times in 5 minutes it enters a pacified state. In this state the machine is only accessible using the direct machine WUI (not the shared WUI) and it is not participating in any HA activity. Therefore, no changes from the master are received and it does not take over if the master fails. To remove the unit from the pacified state, fix the root cause of the health check failures, log in to the pacified LoadMaster through SSH or the console and reboot.

  •  

    If a unit continuously reverts to a pacified state, check the network to see if CARP is being blocked.
Resolution: Have the security scan stop hitting the LM.
Workaround:  
Notes: https://kemptechnologies.com/documentation/latestga/203125199

Comments

In this document