HP VPN Firewall Appliances High Availability Configuration Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module

Protection switchover technologies

Protection switchover technologies aim at recovering network faults. They back up hardware, link, routing,

and service information for switchover in case of network faults to ensure continuity of network services.

A single availability technology cannot solve all problems. You should use a combination of availability

technologies, chosen on the basis of detailed analysis of network environments and user requirements,

to enhance network availability. For example, access-layer devices should be connected to

distribution-layer devices over redundant links, and core-layer devices should be fully meshed. Network

availability should be considered during the planning stage.

Table 3 Protection switchover technologies

Technolo

Introduction Reference

Interface

backup

Interface backup allows interfaces on one device to back up one

another. The main interface transmits services, and the backup

interfaces are in the backup state. When the main interface fails or

the link fails, a backup interface is brought up to transmit services,

increasing network reliability.

"Configuring

interface backup"

Interface

backup

Interface backup allows interfaces on one device to back up one

another. The main interface transmits services, and the backup

interfaces are in the backup state. When the main interface fails or

the link fails, a backup interface is brought up to transmit services,

increasing network reliability.

"Configuring Ethernet

link aggregation"

MSTP

As a Layer 2 management protocol, MSTP eliminates Layer 2 loops

by selectively blocking redundant links in a network, and in the

meantime, allows for link redundancy.

Network

Management

Configuration Guide

Stateful failover

Two devices back up the services of each other to ensure that the

services on them are consistent. If one device fails, the other device

can take over the services by using VRRP or dynamic routing

protocols. Because the other device has already backed up the

services, service traffic can pass through the other device, avoiding

service interruption.

"Configuring stateful

failover"

VRRP

VRRP is an error-tolerant protocol, which provides highly reliable

default links on multicast and broadcast LANs such as Ethernet,

avoiding network interruption due to failure of a single link.

"Configuring VRRP"