Thread: new to clustering need help
View Single Post
  #1 (permalink)  
Old 2008-05-08
sebastan_bach sebastan_bach is offline
Senior Member
  
Join Date: 2005-10-12
Posts: 321
Rep Power: 4
sebastan_bach has an average reputation (10+)
Send a message via Yahoo to sebastan_bach
Default new to clustering need help
hi all i am new to checkpoint and trying out clustering. i was going through the documentation abt sticky connections.

abt sticky connections with regards to vpns. in load sharing mode i really get the point to duplicate sa and they say that we have set sticky decision for the vpns with third-party peers.

lets say i have 2 vpn peers in load sharing mode. when a peer initates a vpn with the virtual ip of the cluster lets say it gives the packet to the first member in the cluster and the cluster responds back .

now since in load sharing mode synchronisation is on is the ike sa also replicated on the other member of the cluster. if yes then they are they mentioning that a duplicated sa will be created which the third party peer might reject.

i not able able to get this thing clear can somebody pls clear this doubt.

regards

sebastan
Reply With Quote