 | ||
 Routing to the standby cluster member | ||
| CPUG | |
| The Check Point User Group | |
| A Resource For The Check Point Community. Fast. Useful. Independent. | |
|
| |||||||
 |
| | LinkBack | Thread Tools | Display Modes |
 2006-07-10 | |||
| |||
 Routing to the standby cluster member Hi guys! Could you please help me with such situation: NGX R60, HFA 03, Cluster HA FW1 has 4 interfaces, FW2 has 5. Unused interface described in the discntd.if. Cluster is ok. FW1 is active, FW2 - standby. I need to use non-cluster network behind FW2, but unsucessful... Example configuration: FW1 is 192.168.1.1 FW2 is 192.168.1.2 and 192.168.2.2 Cluster is 192.168.1.3 WS1 is 192.168.1.4 and has static routing to 192.168.2.0 through 192.168.1.2. WS2 is 192.168.2.2 I can snoop packets from the WS1 to WS2 on the FW2 interface 1. That's all. No packets on the SmartTracker. No packets on the FW2 interface2.... Any suggestions?  |
| 2006-07-11 | |||
| |||
| Re: Routing to the standby cluster member You could try turning off this setting: Cluster Object Properties -> Topology -> Enable Extended Cluster Anti-Spoofing This extended anti-spoofing will drop packets without logging them (much to my delight). HTH |
|
| Thread Tools | |
| Display Modes | |
| |
Linear Mode
