 | ||
 Config HA cluster on solaris 9 | ||
| CPUG | |
| The Check Point User Group | |
| A Resource For The Check Point Community. Fast. Useful. Independent. | |
|
| |||||||
 |
| | LinkBack | Thread Tools | Display Modes |
 2007-02-12 | |||
| |||
 Config HA cluster on solaris 9 Hi Guys Just a quick question I have recently setup a test lab at home using solaris 9 with NG55 on the enforcement nodes and NGX60 on windows 2003 management station. What i want to no is in order to create all the route needed on both nodes and for using manual nat and for setting up proxy arps i have created /etc/rc3.d/S89fwroutes. Can someone just tell me if this is the right solution for the job. All IP adresses listed are fictional fwroutes #Individual routes to 10. network removed as superceded #SW # Disable Solaris routing /usr/sbin/ndd -set /dev/ip ip_forwarding 0 # Default route to router inside /usr/sbin/route add net 0 192.168.5.254 1 # Route to other LAN range /usr/sbin/route add net 194.17.1.0 172.16.2.254 1 # Route to network /usr/sbin/route add net 10.22.9 -netmask 255.255.255.0 192.168.7.96 1 /usr/sbin/route add host 10.22.3.135 192.168.7.96 1 /usr/sbin/route add host 10.22.5.135 192.168.7.96 1 # external routes /usr/sbin/route add net 194.1 194.10.11.25 1 /usr/sbin/route add net 194.1 194.10.11.25 1 /usr/sbin/route add net 194.1 194.10.11.25 1 /usr/sbin/route add net 194.2 194.10.11.25 1 # Static ARP table /usr/sbin/arp -s 194.10.11.27 0:3:ba:99:ef:d1 pub /usr/sbin/arp -s 194.10.11.29 0:3:ba:99:ef:d1 pub /usr/sbin/arp -s 81.174.26.1 0:3:ba:99:ef:d1 pub /usr/sbin/arp -s 81.174.26.2 0:3:ba:99:ef:d1 pub /usr/sbin/arp -s 81.174.26.3 0:3:ba:99:ef:d1 pub #Added NAT routes /usr/sbin/route add host 193.17.46.19 193.17.47.19 1 /usr/sbin/route add host 193.17.46.10 192.168.66.106 1 /usr/sbin/route add host 193.17.46.12 193.17.47.12 1 /usr/sbin/route add host 193.17.46.13 193.17.47.11 1 Node 1 bash-2.05# cphaprob state Cluster Mode: New High Availability (Active Up) Number Unique Address Assigned Load State 1 10.0.0.103 0% standby sync network 2 (local) 10.0.0.102 100% active sync network bash-2.05# cphaprob -a if Required interfaces: 3 Required secured interfaces: 1 hme0 UP non sync(non secured), multicast hme3 UP sync(secured), multicast qfe0 UP non sync(non secured), multicast qfe1 DOWN (80188.6 secs)non sync(non secured), multicast qfe3 DOWN (80188.6 secs)non sync(non secured), multicast Virtual cluster interfaces: 3 hme0 192.168.4.100 qfe0 192.168.1.100 qfe3 81.174.26.1 Node 2 bash-2.05# cphaprob state Cluster Mode: New High Availability (Active Up) Number Unique Address Assigned Load State 1 (local) 10.0.0.103 0% standby 2 10.0.0.102 100% active bash-2.05# cphaprob -a if Required interfaces: 3 Required secured interfaces: 1 hme0 UP non sync(non secured), multicast hme1 UP sync(secured), multicast qfe0 UP non sync(non secured), multicast qfe1 DOWN (80156 secs)non sync(non secured), multicast qfe3 DOWN (80156 secs)non sync(non secured), multicast Virtual cluster interfaces: 3 hme0 192.168.4.100 qfe0 192.168.1.100 qfe3 81.174.26.1  |
| 2007-02-21 | |||
| |||
| Re: Config HA cluster on solaris 9 Anyone have any suguestions on how and where you create your cluster members routes and manual nat, and proxy arp etc. And whether the method listed above is the way to go ?? Many thanks Sean |
|
| Thread Tools | |
| Display Modes | |
| |
Linear Mode
