Forum Discussion

uni's avatar
uni
Icon for Altostratus rankAltostratus
Nov 22, 2012

Add device to device-group on other than management interface

I want to create a device-group for sync-only, on parts of the config amongst three LTMs. The management interfaces do not have visibility of each other, but the 'internal' vlans do. Is there any way to add the devices to the device group without using the management interfaces of the remote devices?

 

If not, once created, do the devices need to communicate amongst each other over the management interface? I may be able to temporarily allow access through the firewall to add the devices.

 

config
design

4 Replies

Sort By
  • What_Lies_Bene1's avatar
    What_Lies_Bene1
    Icon for Cirrostratus rankCirrostratus
    Nov 23, 2012
    Stephen, you can use any Self IP address when you setup/add devices to the Device Group so you should be fine post group creation too, although I'm not sure if there is any further communication specific to the DG setup.

     

     

    By definition the ConfigSync can't use the management interface so you're pretty safe there too.

     

     

    The only thing I'm not 100% sure of is whether the devices must be on the same V/LAN when setting up the DG (which doesn't appear to be an issue for you anyway) and it seems they must be for ConfigSync.
  • Hamish's avatar
    Hamish
    Icon for Cirrocumulus rankCirrocumulus
    Nov 23, 2012
    I have device groups that config sync across routers (ie not on same vlan). Works fine.

     

     

    H
  • Hamish's avatar
    Hamish
    Icon for Cirrocumulus rankCirrocumulus
    Nov 23, 2012
    Ive not seen any docs that indicate that... Even for failover addresses it isn't really necessary as you can always advertise a route to the VS subnets from the active unit...

     

     

    H