System components involved in high availability
Several daemons and processes perform various tasks in the high availability mechanism.
|Intrusion prevention management engine||
Internal messaging system.
Both firewalls continuously exchange messages to replicate the tunnels defined in an IKEv2 only IPSec policy or a combination of IKEv1 / IKEv2.
When an active IPSec policy contains only IKEv1 tunnels, they will not be replicated.
|Sshd / Rsync||Staggers the synchronization of configuration files and Active Update databases through SSH.|
|Sshd / ldap||Synchronizes changes made to the internal LDAP directory in real time through SSH.|
|Alived - ICMP||
Conducts liveness tests between members of the cluster.
Sends gratuitous ARP requests (periodically or during a swap).
Using CLI/Serverd commands in HA
The CLI / Serverd commands CONFIG HA and HA make it possible to configure and control HA through the CLI console of the web administration interface.