Tom,
You'd want to make sure that the primary firewall knows that there is an
issue with connectivity. If you do not lose the link to the upstream
router, but only routes outbound, the cluster may not fail over. In this
case, you might want to manually fail over before the outage and verify that
everything works as expected.
I would assume that since both routers are provided by the ISP that IP
addresses do not change. If they do, you'd want to make sure that your VPNs
are configured to handle this event as well.
thanks for getting back to me - Yes both routers are provided by the same ISP
and so IP range does not change during a failover. Its exactly the scenerio
where our primary doen not notice the failed router that i'm worried about.
When you say manually fail over what is generally the best way to do that? I
presume a fw stop on the primary would cause the secondary to kick in?
thanks
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================
