Setting up SMC server redundancy

This is an early-access feature.
Refer to the Administration guide before enabling this feature.

With SMC server redundancy, service continuity can be guaranteed during a failure of the SMC server. Redundancy involves the use of two SMC servers, on which the configuration is synchronized:

  • The main node,

  • The backup node.

When redundancy has been set up, the connection with SNS firewalls that are connected to SMC will continue in any of the following cases:

  • The main node encounters an issue and firewalls can no longer access SMC,

  • The connection between the main node and all firewalls has been disrupted,

  • When you voluntarily shut down the main node, to conduct maintenance operations, for example.

The firewalls will then automatically connect to the backup node. You must then connect to the backup node to manage and monitor the firewalls.

When the main node resumes operation or is accessible again, the firewalls will connect to it again without the need for any manual action. The main node will then retrieve the configuration from the backup node.

We recommend always using the main node when it is available. If the connection is disrupted between the main node and only some firewalls, the firewalls in question will connect to the backup node. In this case, we recommend searching for the causes of the disruption and establishing the connection again to continue managing the firewalls from the main node. Do note that if you manage these firewalls temporarily from the backup node while the main node is still available, the configuration on the main node will overwrite any changes that you make to the configuration when both nodes are synchronized. For more information on how synchronization works, refer to the section Understanding synchronization between two nodes.