The Packet Filter driver is installed with Orion Failover Engine (FoE), and should be enabled on the Principal (Public) NIC(s) for both the Primary and Secondary server. It is required to be installed regardless of implementation - HA/LAN or DR/WAN - and depending on chosen implementation configured as follows:
It is critical to the installation that Packet Filter is always disabled on the Channel NIC(s) otherwise the Channel will not oprate.
When the server is in passive mode in HA/LAN implementation, the Packet Filter prevents traffic (In/Out) using the Principal (Public) IP address. It also prevents NetBIOS traffic utilizing other IP addresses on the NIC from being sent to prevent NetBIOS name resolution conflicts.
When the passive server becomes the active server it will change state of the Packet Filter to allow traffic.
Using command line, you can check the state of the packet filter by running
nfpktfltr.exe GETSTATE command:
Filtermeans the Packet Filter is blocking packets (server in passive mode)
PassThrumeans the Packet Filter is not blocking packets (server in active mode)
The command line can also be used to manually set the packet filter states, should they be out of sync with the server state for any reason, using
nfpktfltr.exe SETSTATE <STATE> command and
PassThru as the command argument.
In certain circumstances, it may become necessary to manually install and configure the Packet Filter. As a first step for troubleshooting FoE, always collect the following information about the environment. This will make it easier to keep track of the servers while troubleshooting:
nfpktfltr.exe INSTALL "C:\Program Files\SolarWinds\FoE\R2\Drivers\nfpktfltr\6.4.4686"(for FoE 6.4)
nfpktfltr.exe INSTALL "C:\Program Files\SolarWinds\FoE\R2\Drivers\nfpktfltr\6.7.11152"(for FoE 6.7)
nfpktfltr.exe GETSTATEto find the state of the Packet Filter on this server. After the installation, the Packet Filter state is usually set to PassThru, as if the server was Active.
nfpktfltr.exe SETSTATE FILTERto change the state of Packet Filter.
nfpktfltr.exe SETFILTER 10.150.8.70to set the filtering to occur for the public IP Address. The IP address used in the example is of the Principal (public) NIC.