Lyle Dove a écrit :
Hello,
I have a question regarding CP's Sync traffic for ClusterXL. I have setup
my the sync network between the 2 FW's, but I am seeing what appears to be
sync traffic on the Internal networks including the DMZ range along with my
single internal net. Utilizing a packet sniffer, I see traffic source and
destination of port 8116 which is reported as FWHA_MY_STATE and
FWHA_IFCONF_REPLY. The traffic is constant, so I'm not sure if I should be
seeing this traffic, or if its normal. My understanding is that the sync
network is what determines if a box has died. Am I wrong on this?
hi,
here is an extract of the cluster xl guide for ngx r62 (page 30) :
/The synchronization network is used to transfer synchronization
information about
connections and other VPN-1 Power states between cluster members.
Synchronization works in two modes:
• Full sync. transfers all VPN-1 Power kernel table information from one
cluster
member to another. It is handled by the fwd daemon using an encrypted TCP
connection.
• Delta sync. transfers changes in the kernel tables between cluster
members.
Delta sync. is handled by the VPN-1 Power kernel using UDP multicast on port
8116.
/you should fine all the required informations in the clusterXL guide
for your checkpoint release.
___________________________________________________________________________
Yahoo! Mail réinvente le mail ! Découvrez le nouveau Yahoo! Mail et son interface révolutionnaire.
http://fr.mail.yahoo.com
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================
