Manualshelf

Technical data

ManualsBrandsBrocade Communications Systems ManualsHome Theater ServerServerIron ADX 12.4.00
11121314151617181920
ServerIron ADX Firewall Load Balancing Guide 5
53-1002436-01
Understanding ServerIron FWLB
1
DRAFT: BROCADE CONFIDENTIAL
FIGURE 1 Example of FWLB paths
This example shows the following paths:
Path 1—ServerIron ADX A through Firewall 1 to ServerIron C
Path 2—ServerIron ADX A through Firewall 2 to ServerIron C
Path 3—ServerIron ADX A through Firewall 1 to ServerIron D
Path 4—ServerIron ADX A through Firewall 2 to ServerIron D
Path 5—ServerIron ADX A to Internet router
To ensure proper synchronization of traffic through the firewalls, the paths must be symmetrical.
This means that on each ServerIron ADX, the order of next-hop addresses must match. Thus, if you
are configuring IronClad FWLB for Layer 3 firewalls, you must configure the paths so that the
firewall interfaces are listed in the same order. For example, if the configuration contains four
firewalls and you number them 1 through 4 from left to right, the paths on each ServerIron ADX
must be configured so that the firewalls’ next-hop addresses match (the interface for firewall 1 is in
the first path, the interface for firewall 2 is in the second path, and so on).
Internet Router
Internal Router
Path 1
Path 2
Layer 3
Firewall-1
Layer 3
Firewall-2
SI-C
SI-A
SI-D
SI-B
Path 4
Path 3
Path 5