ISP Monitored Hosts

[jparnell]

Hi,

we've just implemented ISP redundancy on two Nokia IP350s, with Checkpoint NGX.

I notice that there is an option to configure 'ISP Monitored Hosts' which allow the firewalls to monitor hosts out on the internet, and mark the ISP link down if one of these hosts is does not respond.

I was wondering if anyone uses this option? Its sounds quite a good idea, but then I'm a little hesitant because if one of the monitored hosts is down for whatever reason ( maybe maintenance) then our ISP link will be marked down.

It can be found: Gateway Properties-> Topology-> ISP Redundancy-> ISP Links-> Edit-> Advanced.

Any views would be appreciated.

James

[Porter]

use something like google.com, the gw would ping then the loadbalancer in front of the webservers. Balancers are up in 99% of all cases, never had any problems with doing it like that way

by the way, which setup do you use? Primary/backup or loadsharing?

[Danielpb]

I have a strange issue to add to this I have removed some of the monitored host's and just left a one available, pushed the policy ....but yet in the logs you can still see it ping the others I have removed.

any ideas?

cheers

Dan

[widget]

HI,

we've got the same issue with the monitored hosts, I had a number in there but now just have google.com, but in smartview tracker you can see all the old entries being pinged as well.

I have a support call open with checkpoint on this.

Graham