I recently faced an issue with Site to Site VPN connectivity between the two Palo Alto Firewalls. They were behind the NAT Device or Internet Router. The WAN interface is configured with the Private IP address.
Best Regards,
Kareem
I recently faced an F5 Split Brain issue, where both F5 boxes acted as Active/Active. Here is the list of troubleshooting steps you need to check to fix the issue.
1) Check Network Reachability between HA Interfaces of both F5 Devices
There might be sometimes you do not have the access to F5 device GUI and you would like to activate the license using CLI and then follow the below steps:
Step1: Get the Base Registration keys of the F5 License from the F5 Portal or F5 Account Team
Step2: Execute the below command to get the dossier from the Base Registration Keys:
get_dossier -b XXXXX-XXXXX-XXXXX-XXXXX-XXXXX
Step3: Once you get the Dossier then copy it to the notepad or word editor
Step4: Access the F5 Secure License Portal (https://secure.f5.com/Infopage/index.jsp) from your machine where you have the Dossier
Step5: Enter the Dossier into F5 Secure License Portal to get the license and download it to your machine
Step6: Copy the License into the BIGIP CLI by using this:
vi /config/bigip.license
Then paste the license and save the file (ESC+:wq)
Step7: Reload the License
reloadlic
Now you have the BIG IP device with the license
Best Regards,
Kareem
