System components involved in high availability
Several daemons and processes perform various tasks in the high availability mechanism.
Intrusion prevention management engine |
Synchronizes:
|
Serverd |
|
Gatewayd |
Internal messaging system. Both firewalls continuously exchange messages to replicate the tunnels defined in an IKEv2 only IPsec policy or a combination of IKEv1 / IKEv2. When an active IPsec policy contains only IKEv1 tunnels, they will not be replicated. |
Stated |
|
Corosync |
|
Sshd / Rsync | Staggers the synchronization of configuration files and Active Update databases through SSH. |
Sshd / ldap | Synchronizes changes made to the internal LDAP directory in real time through SSH. |
Eventd |
|
Alived - ICMP |
Conducts liveness tests between members of the cluster. |
Arpsync |
Sends gratuitous ARP requests (periodically or during a swap). |
Using CLI/Serverd commands in HA
The CLI / Serverd commands CONFIG HA and HA make it possible to configure and control HA through the CLI console of the web administration interface.
These commands are explained in detail in the CLI SERVERD Commands Reference Guide (CONFIG HA and HA menus).