I recently inherited someone else's problem of 2 SSG-320 devices that were "supposed" to be in HA mode, but never were fully implemented. What I'm currently trying to figure out, before enabling HA mode, is why 2 zones aren't reachable on the secondary device. I can ping, SSH and use a browser on one zone, but no response on the other 2 zones/IPs. The first device has no issues, I can reach all 3 zones with SSH and/or webgui.
I should note that there was no remote access whatsover, until I recently consoled in and added a range in the Permitted IPs, to allow SSH and webgui to connect. Currently, Permitted IPs mirrors the same settings as in device #1, so I can't see that as being the issue now. But I can only access that one zone, the other 2 are unreachable, I can't even ping them.
I've changed the management IP on the device to see if maybe there was an issue there, but no difference. When I observed the activity on both of the devices, as per the NICs, they all flashed in unison, which tells me they seem to be receiving the same data. I don't see any IP conflicts either.
Is there some setting or something I may have overlooked? I've been searching for answers for several days, but can't seem to find anything related. I'm wondering if the device itself may be faulty.