Step 3: Cluster’s pre-shared key and data encryption
If a cluster is being created
To secure the connection between members of the cluster, you will need to define a pre-shared key.
This key will only be used by firewalls that are joining the cluster for the first time.
Define a password/pre-shared key for your cluster.
Confirm the password/pre-shared key that you have just entered in the previous field.
|Mandatory password strength||
This field indicates your password’s level of security: “Very Weak”, “Weak”, “Medium”, “Good” or “Excellent”. You are strongly advised to use uppercase letters and special characters.
Communication between firewalls in the high availability cluster
|Encrypt communication between firewalls||
By default, communication between the firewalls is not encrypted, based on the principle that the link used by high availability is a dedicated link.
In some architectures, the high availability link is not dedicated, and if you wish to prevent inter-cluster communications from being read, they can be encrypted (in AES, for example).
If a cluster exists
|IP address of the firewall to contact||
Enter the IP address that you had defined in the wizard during the creation of the cluster (IP address of the main or secondary link).
Enter the password/pre-shared key that you had defined in the wizard during the creation of the cluster.