HP TMS zl Module Security Administrator's Guide
1-46
Managing TMS zl Modules
Configuring High Availability Clusters
Configuring High Availability Clusters
Two TMS zl Modules can work together in a High Availability (HA) cluster,
which provides high availability and redundancy in the rare event of a module
failure. The modules in the HA cluster share connection state information.
Should one module fail, the other module assumes most of its active connec-
tions, and the system is up and running again in a few seconds. Once an HA
cluster is configured and deployed to the modules, the cluster can be modified
and deleted.
Note After an HA cluster is formed, the Participant module is no longer reachable,
except when the Master fails.
The following functions are synchronized between members in a cluster:
• Current startup-config
• Static routing table
• IPS/IDS signatures
Note High Availability is supported only for TMS zl Modules that are configured in
the “Routing” operating mode. It is not supported for modules configured to
operate in “Monitor” mode, although the TMS zl Module CLI and Web browser
interface allow you to configure it. If you require redundancy for TMS zl
Modules operating in monitor mode, simply mirror the same traffic to two
modules. For more information on these TMS zl Module operating modes, see
the HP Threat Management Services zl Module Management and Configu-
ration Guide available at: www.hp.com/networking/manuals.
Note Some manual configuration must be completed on the TMS zl Modules before
NIM can be used to manage configurations, as explained in the Introduction
section of this chapter (see “TMS zl Module Manual Configuration” on page 1-
5), and in the HP Threat Management Services zl Module Management and
Configuration Guide available at: www.hp.com/networking/manuals. In that
manual, see Chapter 2, for the basic configuration, and Chapter 8, for details
about HA configuration.