[FW-1] VRIDs when using simplified VRRP

Subject:	[FW-1] VRIDs when using simplified VRRP
From:	kbetcher44 AT NETSCAPE DOT NET
To:	FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Date:	Wed, 25 May 2005 22:07:11 -0400

We currently define a VRID for each physical interface on our Nokia appliance.  
This is true if there is only one network connected to the interface or if 
there are many VLANs connected.  We are in the process of upgrading to IPSO 
3.8.1

page 285 of IPSO 3.8.1 Voyager Reference Guide states:
Note:
All configured backup addresses must be associated with the same VRID. If you 
do not associate all backup addresses with the same VRID when you configure 
monitored circuit mode using simplified configuration, monitoring of VRRP 
network interfaces is not enabled.

Does this mean you can only have 1 VRID or can we continue to have one for each 
physical interface.  The Reference Guide continues with references of choosing 
the particular VRID for options and changes etc. which contradicts the Note 
above.  I originally interpreted the note to be in reference to a HA solution 
where the master, and all backup appliances  must use the same VRID for a 
particular backup address.  I just thought I'd run it past this mail list to be 
sure before we upgrade.

Thanks in advance,

Ken


__________________________________________________________________
Switch to Netscape Internet Service.
As low as $9.95 a month -- Sign up today at http://isp.netscape.com/register

Netscape. Just the Net You Need.

New! Netscape Toolbar for Internet Explorer
Search from anywhere on the Web and block those annoying pop-ups.
Download now at http://channels.netscape.com/ns/search/install.jsp

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================

<Prev in Thread]	Current Thread	[Next in Thread>
[FW-1] VRIDs when using simplified VRRP, kbetcher44 <= Re: [FW-1] VRIDs when using simplified VRRP, Timothy Arnold Re: [FW-1] VRIDs when using simplified VRRP, Raymond N Re: [FW-1] VRIDs when using simplified VRRP, Steffen Re: [FW-1] VRIDs when using simplified VRRP, Dragomirescu, Radu

Previous by Date:	[FW-1] checkpoint \| cisco concentrator [design thoughts], . security
Next by Date:	Re: [FW-1] Delay response of Check Point Firewall-1 Gateway for SMTP connections, Ray
Previous by Thread:	[FW-1] checkpoint \| cisco concentrator [design thoughts], . security
Next by Thread:	Re: [FW-1] VRIDs when using simplified VRRP, Timothy Arnold
Indexes:	[Date] [Thread] [Top] [All Lists]