Manualshelf

User's Manual

ManualsBrandsSofaWare Technologies ManualsElectronicsInternet Security Appliance
919293949596979899100
Configuring High Availability
88 Check Point Safe@Office User Guide
gateway is running once again, it reclaims the virtual IP address and resumes
its roles.
Before configuring High Availability, the following requirements must be
met:
You must have two identical Safe@Office 225 appliances.
The Safe@Office appliances must have identical firmware versions
and firewall rules.
The Safe@Office appliances must have different LAN and DMZ IP
addresses, and they must be located on the same subnet. For
information on configuring LAN and DMZ addresses, see
Configuring Network Settings on page 79.
The LAN ports of the two Safe@Office appliances must be
connected via a hub or a switch.
You can configure both the LAN network and the DMZ network for High
Availability.
The procedure below explains how to configure High Availability for the
LAN network, but can be used to configure High Availability for the DMZ
network as well.
Note: You can enable the DHCP server in both Safe@Office appliances.
The Backup gateway’s DHCP server will start answering DHCP
requests only if the Master gateway fails.
Note: You can force a fail-over to the Backup Safe@Office appliance.
You may want to do this in order to verify that High Availability is
working properly, or if the Master Safe@Office appliance needs repairs.
To force a fail-over, switch off the primary box or disconnect it from the
LAN network.