Does anyone know why you would want to use the High Availability option for SecuRemote (aka. Backup Gateway) [1] instead of just having multiple firewalls with the same encryption domain if you are in a Multiple Entry Point config [2]?
Let's pretend we have two firewalls (one in Florida and one in Denver).
Is the difference that in [2] both firewalls are excepting SR connections all the time and in [1] only the main firewall will except SR connections (unless it goes offline which then make the 2nd firewall "live" for SecuRemote connections?
Doesn't the SecuRemote client "ping" the firewall it is going though to see if it is alive every few seconds, then looking for an active entry point in the same encryption domain if the current one goes offline? (excuse the run on sentence)
Thanks.
-Tim
________________________ ______ ____ ___ __
Tim Russo
Xchange, Inc.
Sr. Security Engineer
EMail: [EMAIL PROTECTED]
Phone: 617.790.2803
FAX: 617.790.2857
