fw_sync_block_new_conns

[implain]

I have error in /var/log/message that show below
FW-1: State synchronization is in risk. Please examine your synchronization network to avoid further problems !
FW-1: It is recommended to set the global parameter fw_sync_block_new_conns to 0
FW-1: Please refer to documentation for details on this issue. Any change must be applied to ALL cluster members
FW-1: fwldbcast_recv: delta sync connection with member 1 was lost and regained.58615 updates were lost.
FW-1: fwldbcast_recv: received sequence 0xe99253 (fragm 0, index 1), last processed seq 0xe8ad5b

fw_sync_block_new_conns parameter ,i can not find to edit .Anyone know where the parameter? i try to use guiDBedit to find this parameter but i can't see

[Routerkid1]

This is a kernel parameter and can be set with fw ctl int set sync_block_new_conns 0

[Testing-123]

Hi,

If you were receiving this message, would it imply your primary firewall is receiving a high throughput and therefore cannot state sync to the secondary? What other log messages can help determine if a firewall is experiencing load issues (except for system utilization reports on box etc)

By default fw_sync_block_new_conns is set to -1 (load detection disabled) so why permanently enable it by setting it to 0?

Am i correct in saying that, setting this variable to 0, you are saying if a firewall is under heavy load, state sync is more important then passing new connections?

Regards
Testing-123