Security

 View Only
Expand all | Collapse all

Clerpasss 6.8 Clustering Problem on ESXI 6.7

This thread has been viewed 110 times
  • 1.  Clerpasss 6.8 Clustering Problem on ESXI 6.7

    Posted May 01, 2019 07:22 AM

    Hi There 

    I've got 2x instances of Clearpass 6.8, both servers are hosted by ESXI 6.7 

    Both Servers are in the same subnet and can be pinged on both ends from Clearpass CLI's 

    When im trying to add 2nd server as a subscriber ive got following Warning massage saying echo GET failed.

    Has anyone expierienced similliar issue before ?

     

    Regards 

    Jack 



  • 2.  RE: Clerpasss 6.8 Clustering Problem on ESXI 6.7

    Posted May 01, 2019 07:26 AM
    Is there a firewall between the clearpass nodes?


  • 3.  RE: Clerpasss 6.8 Clustering Problem on ESXI 6.7

    Posted May 01, 2019 10:39 AM

    CPPM cluster (subscriber-publisher)

    • UDP Port 123 NTP (Subscriber to publisher)
    • TCP Port 443 HTTPS (Bi-directional)
    • TCP Port 5432 PostgreSQL for DB replication (Subscriber to publisher)
    • TCP Port 80 HTTP (Between Nodes)
    • TCP Port 4231 NetWatch (Post Authentication module and the node where Insight is enabled

    check if all this ports are opened



  • 4.  RE: Clerpasss 6.8 Clustering Problem on ESXI 6.7

    Posted May 01, 2019 11:22 AM

    Hi There 

    Thanks for coming back to me on this. 

    Both Clearpass Servers are hosted by the same ESXI host 

    Also both servers are connected to the same Vswitch which is part of the same Vlan connected to Aruba Switch, there is no firewall in between the servers.

    Are there any other ways to troubleshoot this issue ?

    Many Thanks 

    Jack