HP VPN Firewall Appliances High Availability Configuration Guide
56
Item Descri
p
tion
Current Status
Current stateful failover state of the device:
• Silence—The device has just started, or is transiting from synchronization state
to independence state.
• Independence—The silence timer has expired, but no failover link is
established.
• Synchronization—The device has completed state negotiation with the other
device and is ready for data backup.
Current Configuration
Synchronization Status
Displays the current configuration synchronization state, including:
• A configuration conflict occurs—Both devices are active or standby devices.
• Waiting for the synchronization status.
• Preparing for synchronization.
• Synchronizing all configurations.
• Synchronizes configurations automatically—The synchronization of all
configurations has completed. Configuration updates on the active device will
be automatically synchronized to the standby device.
• Auto synchronization is not performed—Because auto synchronization is not
specified, configuration updates on the active device will not be automatically
synchronized to the standby device.
Stateful failover configuration example
Network requirements
Firewall A and Firewall B are deployed for stateful failover in an enterprise network to provide Internet
access. They both run NAT to provide IP address translation.
• Configure the firewalls to back up each other, so that when one firewall fails, the other firewall takes
over the services to ensure service continuity.
• Enable automatic configuration synchronization from Firewall A (active firewall) to Firewall B
(standby firewall).
Figure 31 Network diagram
Internet
Internal
network
Firewall A
Host A Host B
Firewall B
Failover link
GE0/1 GE0/1
GE0/3 GE0/3
GE0/2 GE0/2
VLAN 4001