On Mon, 1 Oct 2007, Sergio Alvarez wrote:
It sure does... That way you don't have "all your eggs in the same basket".
If the machine where your firewall resides dies, you still have all your
rules on the SmartCenter machine, so getting back on line just requires for
you to get a backup machine, install SecurePlatform, re-establish SIC and
push the policies down.
On the other hand, if your Smartcenter machine dies (and you have done your
homework and have taken backups), similarly you can bring a new machine,
install the Smartcenter and load the backup. This takes a little more time
than bringing back up a fw module, but now you can take your time as while
the Smartcenter is gone from the network, your firewall module will still be
running and handling traffic with the last policy you installed on it.
Basically having a Smartcenter down does not cause any downtime for your
network.
Untill the SMartCenter is in control of your VPN's. Then having no CRL
will in time kill the whole VPN community. (Been there, seen it happen to
a network with a serious amount of VPN tunnels.)
You luck will run out in 7 days for sure. But occasional issues may cause
you to be in trouble after only 24 hours.
So consider a down SmartCenter to be critical to VPN communities.
Hugo.
--
[EMAIL PROTECTED] http://hugo.vanderkooij.org/
This message is using 100% recycled electrons.
Some men see computers as they are and say "Windows"
I use computers with Linux and say "Why Windows?"
(Thanks JFK, for this quote of George Bernard Shaw.)
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================
