Hi guys,
Recently, I've setup a very simple redundant firewall (active-passive) as shown in the attachment. The way that I test redundancy group 1 failover is via a ping test from User A to User B. I have two questions regarding this setup:
i) When I unplug cable ge-0/0/2 from the active firewall, I get one request time out and then the ping works just fine. Is this normal behaviour?
ii) And then when I plug the ge-0/0/2 back to the active firewall, I get 5 request time out before User A is able to ping User B. Is this normal behavior?
I read from the junos manual, they mentioned that there's no packet loss when there's a failover between active to passive and vice versa. I've tried many ways such as decreasing the hold down timer, increasing the gratitous arp count but still it displays the same behavior. Is there anything that I miss out?
I've included the SRX3600 config for your easy reference. Any valuable advice is greatly appreciated. Thanks.
Regards,
Daniel