Re: [FW-1] FW: Internal Traffic

Subject:	Re: [FW-1] FW: Internal Traffic
From:	pkc_mls <pkc_mls AT YAHOO DOT FR>
To:	FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Date:	Thu, 29 Mar 2007 08:15:39 +0200

Lyle Dove a écrit :

Hello,

I have a question regarding CP's Sync traffic for ClusterXL. I have setup

my the sync network between the 2 FW's, but I am seeing what appears to be
sync traffic on the Internal networks including the DMZ range along with my
single internal net.  Utilizing a packet sniffer, I see traffic source and
destination of port 8116 which is reported as FWHA_MY_STATE and
FWHA_IFCONF_REPLY.  The traffic is constant, so I'm not sure if I should be
seeing this traffic, or if its normal.  My understanding is that the sync
network is what determines if a box has died.  Am I wrong on this?

hi,
here is an extract of the cluster xl guide for ngx r62 (page 30) :

/The synchronization network is used to transfer synchronizationinformation about

connections and other VPN-1 Power states between cluster members.

Synchronization works in two modes:

• Full sync. transfers all VPN-1 Power kernel table information from onecluster

member to another. It is handled by the fwd daemon using an encrypted TCP
connection.

• Delta sync. transfers changes in the kernel tables between clustermembers.

Delta sync. is handled by the VPN-1 Power kernel using UDP multicast on port
8116.

/you should fine all the required informations in the clusterXL guidefor your checkpoint release.

___________________________________________________________________________Yahoo! Mail réinvente le mail ! Découvrez le nouveau Yahoo! Mail et son interface révolutionnaire.

http://fr.mail.yahoo.com

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================

<Prev in Thread]	Current Thread	[Next in Thread>
[FW-1] FW: Internal Traffic, Lyle Dove Re: [FW-1] FW: Internal Traffic, pkc_mls <= Re: [FW-1] FW: Internal Traffic, sin Re: [FW-1] FW: Internal Traffic, Paolo Riviello www.paoloriviello.com

Previous by Date:	Re: [FW-1] IPSO IP Clustering, Christopher McGill
Next by Date:	Re: [FW-1] FW-1 list is moving, pkc_mls
Previous by Thread:	[FW-1] FW: Internal Traffic, Lyle Dove
Next by Thread:	Re: [FW-1] FW: Internal Traffic, sin
Indexes:	[Date] [Thread] [Top] [All Lists]