Solved

Nokia IP260 High Availablity

Posted on 2007-03-26
2
824 Views
Last Modified: 2013-11-16
I have got the job of setting up two Nokia IP260s in a high availability (either active-passive or active-active), my main experience is with Checkpoint only (on SPLAT/Windows). I have looked through some docs on setting up IPSO for HA but it's not that clear. I want someone with experience of doing this to do write a description of the process of setting this up (the easiest and simplest way possible to achieve HA and get CP up and running). Also:

Am I right in thinking IPSO is solely responsible for the HA? and that the only config CP needs is to allow multicast between the devices?

Whats the process of installing CP on them?

Can the connections between the devices be a crossover cable?  (the sync network)

thanks in advance
0
Comment
Question by:ma77smith
2 Comments
 
LVL 8

Expert Comment

by:charan_jeetsingh
ID: 18813380
Ur second Q first (Am I right in thinking IPSO is solely responsible for the HA? and that the only config CP needs is to allow multicast between the devices? ) : NO, The Chekpoint has to be configured simultaneously for making a complete fully functional Cluster.

Q : Whats the process of installing CP on them? : get the CP_ipso package. Upload it on the flash through nokia voyager and install it from there. :).. also check for the latest hotfixes for that version.

Q : Can the connections between the devices be a crossover cable?  (the sync network)  ---> i will say avoid that. It will work but i dont know the reason why somtimes this way cluster goes out of sync and starts misbehaving.

Regarding your first Q : where are u getting confused? its a bit lengthy and i am very lazy to type so i will focus on where exactly u are getting stuck....
0
 
LVL 4

Accepted Solution

by:
nstand earned 500 total points
ID: 18849885
You have a couple of choices, either setup Clustering using ClusterXL or my recommendation would be to setup simple active-passive failover using VRRP on the Nokia IPSO boxes. This method just requires a standard install of CheckPoint on the IPSO platform (no ClusterXL required). Once you have 2 IP platforms running IPSO then you setup and configure VRRP (monitored circuits rather than VRRPv2). You will need a sync network/cable which you dont include in the VRRP setup. Read the IPSO documentation on VRRP setup, its very good and straight forward.
0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

If you are like regular user of computer nowadays, a good bet that your home computer is on right now, all exposed to world of Internet to be exploited by somebody you do not know and you never will. Internet security issues has been getting worse d…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
In this seventh video of the Xpdf series, we discuss and demonstrate the PDFfonts utility, which lists all the fonts used in a PDF file. It does this via a command line interface, making it suitable for use in programs, scripts, batch files — any pl…

760 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now