The management server don't even have to be on the same LAN segment. Christopher McGill CCSA, CCNA, MCP
________________________________ From: Mailing list for discussion of Firewall-1 on behalf of Tom Brown Sent: Tue 24/05/2005 18:03 To: [email protected] Subject: Re: [FW-1] High Availability x over is to allow the 2 modules to sync with each other - arp tables etc > Crossover cable? The purpose is to provide redundancy for the primary > server, if you cross the secondary server into the primary, what happens if > the primary has a power failure. Your secondary server should be placed in > the network where it maximizes HA. > > > Christopher McGill > CCSA, CCNA, MCP > > ________________________________ > > From: Mailing list for discussion of Firewall-1 on behalf of Christian Franke > Sent: Tue 24/05/2005 17:09 > To: [email protected] > Subject: Re: [FW-1] High Availability > > > > Hi Chris, > > I am setting up now the scenario you are describing with > securplatform. I hope I understand you right, the only thing I need > for Checkpoints-HA are two Managementserver and a crosscable? > > -- > Christian Franke <[EMAIL PROTECTED]> > -------------------------------------------------------- > powered by Sun Java Linux Desktop > -------------------------------------------------------- > > > 2005/5/24, Chris McGill <[EMAIL PROTECTED]>: > >>The Management HA scheme requires one primary Management Server, and at least >>one secondary Management Server. There is no limit to the number of secondary >>Management Servers. The first installed Management Server is automatically >>designated as primary, while every other Management Server added to the >>cluster is considered secondary. After the secondary Management Servers are >>properly initialized, no functional differences exist between the two >>Management Server types. >> >>In normal circumstances, the active Management Server performs as a typical >>Management Server granting read/write access to the user. In contrast, >>standby Management Servers can only be accessed in read-only mode. >> >>Manual switching between active and standby Management Servers adds >>scalability and availability to basic Management Server functionality, >>reduces workload on Management Servers, and accelerates response to user >>requests. To enable manual switching, standby Management Servers' databases >>must be updated. This can be achieved as follows: >> >>* The Security Administrator can manually overwrite a standby >>Management Server's database from the Management High Availability Modules in >>SmartDashboard. >> >>* The Security Administrator can choose from a number of options for >>automated synchronization. >> >>Since every Management Server in an HA configuration can switch from active >>to standby mode and vice versa, logs should be forwarded either to one >>Management Server, or to a specially designated machine that is not a cluster >>member. >> >>Do not work with more than one active Management Server. When the Management >>Servers synchronize, one of the databases will be overwritten. >> >>Both the primary and secondary Management Server must be on the same >>operating system - either both Windows NT or both Solaris. >> >>Management HA is only supported in a distributed configuration. >> >>I love this solution it is a great solution from Check Point. >> >>Christopher McGill >>CCSA, CCNA, MCP >> >>________________________________ >> >>From: Mailing list for discussion of Firewall-1 on behalf of Andrey Maluck >>Sent: Tue 24/05/2005 09:08 >>To: [email protected] >>Subject: [FW-1] High Availability >> >> >>Hi, Gurus. >>Following my previous question on Smart Center, actually the aim is to >>migrate from standalone installation (NG AI R55 HFA13) to High >>Availability New Mode cluster. >>Could you please share you experience. What are the things I should pay >>special attention and what are the possible problems I may encounter? >> >>Thanks in advance, >>Andrey. >> >>================================================= >>To set vacation, Out-Of-Office, or away messages, >>send an email to [EMAIL PROTECTED] >>in the BODY of the email add: >>set fw-1-mailinglist nomail >>================================================= >>To unsubscribe from this mailing list, >>please see the instructions at >>http://www.checkpoint.com/services/mailing.html >>================================================= >>If you have any questions on how to change your >>subscription options, email >>[EMAIL PROTECTED] >>================================================= >> >>This e-mail and any attachment is for authorised use by the intended >>recipient(s) only. It may contain proprietary material, confidential >>information and/or be subject to legal privilege. It should not be copied, >>disclosed to, retained or used by, any other party. If you are not an >>intended recipient then please promptly delete this e-mail and any attachment >>and all copies and inform the sender. Thank you. >> >> >>================================================= >>To set vacation, Out-Of-Office, or away messages, >>send an email to [EMAIL PROTECTED] >>in the BODY of the email add: >>set fw-1-mailinglist nomail >>================================================= >>To unsubscribe from this mailing list, >>please see the instructions at >>http://www.checkpoint.com/services/mailing.html >>================================================= >>If you have any questions on how to change your >>subscription options, email >>[EMAIL PROTECTED] >>================================================= >> > > > ================================================= > To set vacation, Out-Of-Office, or away messages, > send an email to [EMAIL PROTECTED] > in the BODY of the email add: > set fw-1-mailinglist nomail > ================================================= > To unsubscribe from this mailing list, > please see the instructions at > http://www.checkpoint.com/services/mailing.html > ================================================= > If you have any questions on how to change your > subscription options, email > [EMAIL PROTECTED] > ================================================= > > > > ================================================= > To set vacation, Out-Of-Office, or away messages, > send an email to [EMAIL PROTECTED] > in the BODY of the email add: > set fw-1-mailinglist nomail > ================================================= > To unsubscribe from this mailing list, > please see the instructions at > http://www.checkpoint.com/services/mailing.html > ================================================= > If you have any questions on how to change your > subscription options, email > [EMAIL PROTECTED] > ================================================= ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
