How many firewall nodes can you have in a Checkpoint CLUSTERXL enironment

We currently have an Active/Standby Checkpoint Clusterxl Firewall setup in our main data facility.  We have two buildings and have recently built a secondary DR data center in the building.   We originally were just going to move the 2nd inactive firewall to the other building - (all interfaces are on vlans that are trunked between buildings.  so private, public, dmz, and heartbeat are all on seperate vlans available in both buildings.)

After some thought, moving the secondary firewall we will lose the resiliency in the primary site.  Assuming the vlans were up between the sites, this should be able to serve off the secondary firewall in the secondary site, but have since decided to purchase another firewall instead and add it to the clusterxl.

questions are:
1.  how many firewall appliances checkpoint 4600 running GAI can I put in a clusterxl environment?
2.  Can I set a priority or weight of what appliances should be elected as active if the heartbeat (sync channel fails).  My understanding is that if the sync channel fails.. the nodes determine which is to be active.   If the fiber goes dark between our buildings (our vlan trunk).  Both building would in essence think they are capable of running the active firewall.   If one building is destroyed, I need to have a mechanism for telling how to elect the active firewall.

any information, setup or config recommendations....
rdelrosarioAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

FideliusCommented:
Hello

1. If full state synchronization is used in Security Gateway, the recommended maximum number of nodes is 4 regardless of the clustering mechanism used.
Source: sk81300

2. From ( Cluster XL Admin Guide R77 page 20 ): In a High Availability cluster, each member is assigned a priority. The highest priority member serves as the Security Gateway in normal circumstances. If this member fails, control is passed to the next highest priority member. If that member fails, control is passed to the next member, and so on.

Also there is good explanation on page 10.

To set priority (page 25):  Member priorities correspond to the order in which they appear in the Cluster Members page of the Cluster Properties window. The top-most member has the highest priority. You can modify this ranking at any time.

Cluster priority
Regards!
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Network Architecture

From novice to tech pro — start learning today.