I have just setup VRRPmc for HA load sharing on a couple of nokia 650's, layer2
& 3 seems to work fine. I cant telnet or ssh to the firewall after I do
fwstart, I can after fwstop. The rulebase fails to install on the 2nd
firewall below. Can anyone help by summerizing how to setup the clustering.
>From the design below, each fw has 6 virtual ip's which means creating 6
Gateway Clusters. How does one make the firewall a member of these clusters.
In theory my design should work, I just can't get it right on the rulebase, how
do I create these gw clusters. The fwclean is connected to the Internal
network. fwnet connects to the internet, & fwdmz connect to the DMZ.
|fwnet |fwnet2
____________ ______|______
| | fwclean1 | |
| |----- --- ___fwclean2 |
| | | |
|___________| |____________|
|fwdmz1 |fwdmz2
| |
fwnet1 fwnet2
ip 10.0.0.1 (real IP) ip 10.0.0.2
vr1 10.0.0.3 priority=50 vr1 10.0.0.4 p=50
vr2 10.0.0.4 priority=40 vr2 10.0.0.3 p=40
fwclean1 fwclean1
ip 192.168.0.1 ip 192.168.0.2
vr1 192.168.0.3 priority=50 vr1 192.168.0.4 p=50
vr2 192.168.0.4 priority=40 vr2 192.168.0.3 p=40
fwdmz1 fwdmz1
ip 172.134.0.1 ip 172.134.0.2
vr1 172.134.0.3 priority=50 vr1 172.134.0.4 p=50
vr2 172.134.0.4 priority=40 vr2 172.134.0.3 p=40
--
Get your firstname@lastname email for FREE at http://Nameplanet.com/?su
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
