Hello cciesec2006
Quote:
In theory, you could have traffics directly route to the secondary firewall
and then it goes back out on the Primary firewall and it can work too.
It works because of the synchronization between the two firewalls. That
being said, it does NOT work well if the firewall is under heavy load. |
But the Primary firewall will NOT have seen the initial connection (not in state table) therefore it will drop the connection? What you're implying is that state sync works both ways, i.e secondary also syncs its state table to Primary - is this right?
Regards
Testing-123