TMS zl Management and Configuration Guide ST.1.2.100916

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module

1041

8-15

High Availability

Configuring High Availability

Some connections are not synchronized with the participant and will not

be listed. For your reference, Table 8-2 lists the connections that will be

synchronized and will be reflected in the output of the show zones com-

mand.

Table 8-2. Connections That Are Synchronized in HA Clusters

Note ICMP traffic is not synchronized to the participant. The TMS zl Module

maintains ICMP association information for each ICMP connection on the

master only. Whenever a failover happens, however, the association informa-

tion is recreated on the new master, and ICMP works seamlessly.

Comparing Master and Participant Connections

You can compare the number of connections on the master and the participant

to verify that the participant is prepared to act as the master.

For example, modules C and D are part of an HA cluster; C is the master, and

D is the participant. If an endpoint in Zone1 connects to an FTP server in

Zone2, you will see the following.

hostswitch# services c name tms-module

hostswitch(tms-module-C)# configure terminal

hostswitch(tms-module-C:config)# show zones

Synchronized Not Synchronized

• TCP connections

• UDP connections

•NAT

• IPsec VPNs

– Site-to-site

• GRE tunnels

•ALGs

• Connections to and from Self

• Multicast traffic

• Broadcast traffic

• Client-to-site

–L2TP over IPsec VPNs

– IPsec VPNs

• Rate limiting

• PPP connections

• IDS/IPS subscription

•ICMP

Zone

-----------------

Connections

------------

Limit

-------

SELF 0 21428

EXTERNAL 0 150000

INTERNAL 0 150000

DMZ 0 150000