We figured out the issue, it was the two connections from the colo could not see each other and once we plugged the colo and the watchguards into the switch and enabled the vlan across the two switches, everything started working. Quite an experience from testing.
Yes, the two connections are for redundancy as those connections are connected to two separate switches of the Colo provider. the connections are transparent to the firewalls. I suspect the second firewall is trying to take over as master and causing the issues. We are going to continue to do some more testing and we are…