|
|
|
|
|
|
|
|
 |
 |
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] RE: [FW1] high availability
Stonebeat and Rainwall will both address your HA concerns from a software standpoint (you are left to decide which is correct for organization). You can accomplish your goal with HSRP if you have each gateway connected to a VLAN on a Cisco switch spanning both IP subnets and VLANs (since you stated they were on different segments I'll make a blanket covering statement) or then running a trunking protocol between switches if you can't separate the network segments. I agree with Mark though that you would _probably_ be better met with OSPF in this case (as opposed to HSRP). Personally, I prefer my FWs not to accept dynamic routing updates from the core...I like to have a bit more control and use varied metrics for static routes internally. Chris -----Original Message----- From: Mark Decker To: Casey DeBerry; [email protected] Sent: 7/20/01 4:09 PM Subject: RE: [FW1] high availability Casey, There are other solutions besides StoneBeat. Take a look at: http://www.checkpoint.com/opsec/performance.html#HA_Load_Balancing Most true HA solutions require both FWs to be on the same subnets (both doing the same task). I don't believe HSRP will do what you describe unless the FWs in question are both Cisco boxes. However, you might be able to do something like that with OSPF. Look at www.hanetworks.com for some ideas. HTH, Mark L. Decker Rainfinity - High Availability for [email protected] -----Original Message----- From: [email protected] [mailto:[email protected]]On Behalf Of Casey DeBerry Sent: Thursday, July 19, 2001 12:58 PM To: [email protected] Subject: [FW1] high availability i am looking for some information on high availability.. basically, i have two firewalls on different segments that will be acting as backups for each other. if FW1 were to fail, HSRP would route its network traffic to FWB... is there a solution out there besides stonebeat? will stonebeat accomplish this? thanks, Casey DeBerry [email protected] ======================================================================== ======== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ======================================================================== ======== ======================================================================== ======== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ======================================================================== ======== ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|
||||||||||
 |
 |
 |
 |
 |
 |
 |
 |
 |
|
