 Does VPN-1/FireWall-1 support redundant NICs?
Does VPN-1/FireWall-1 support redundant NICs?
A site reader asks: "Is is possible to have 2 NIC's physically installed, each plugged into a pair of HA switches and logically providing a single interface? The idea is to have FW1 treat the pair of physical NIC's as one - in the event that one the switches dies, the NIC that is connected to the 'good' switch carries on, business as usual?"
The ability to "hot failover" a NIC to a different NIC is a function of the OS, not a function of FireWall-1. If the OS can present to FireWall-1 a "single" physical interface, FireWall-1 could probably use it. For example, I am unaware of any OS that supports VPN-1/FireWall-1 that can do this.
That isn't to say you couldn't have multiple NICs connected to multiple switches and implement dynamic routing or static cost-based routing and accomplish more or less the same thing.
-- PhoneBoy - 05 Jan 2004
FAQForm
FAQs.Class: MiscellaneousFAQs
FAQs.OS: OsAIX, OsSolaris, OsSecurePlatform, OsNokiaIPSO, OsWindows, OsHpux, OsLinux
FAQs.Version:  | 
Does VPN-1/FireWall-1 support redundant NICs? 
2005-08-14 
Linear Mode
