If you are upgrading an ADC HA pair to latest Firmware and face that your synchronization between nodes does not work anymore, this post is for you.
After upgrading a Citrix ADC HA pair to latest Firmware which is as time of writing 13.0 Build 82.41/82.45, I faced some issue.
To be honest I don’t know if it’s Firmware related and will just happen with this version or can also happen with older ones.
As the process is to upgrade secondary node first, you will see the issue only after upgrading the Node which was primary (synchronization is auto-disable if Firmware version are different).
So, after upgrading the Node which was Primary, after the reboot, you could see the following:
In this case, you will need to follow the below steps to fix this.
- Connect to the Primary Node and go to Traffic Management > Load Balancing > Services.
- Click on nsrpcs-127.0.0.1-3008 to edit it.
- Edit SSL Parameters.
- Check the box TLSv12 and click on OK.
- Click on Done.
- Make a right-click on your secondary Node and select Force Synchronization.
- Click on OK.
- Click on the refresh icon.
- Now, you should see SUCCESS
I do not know if it’s a Bug during the Firmware upgrade as I have never checked with older Firmware if the synchronization was set only to SSLv3 and TLSv1.
But for sure, with at least this Firmware version it needs to have TLSv12 for the synchronization between the Nodes to occur.
Feel free to share and provide your feedback.
Thanks