Watchguard V10 Supplementary Manual page 16

Make sure that the connection links both HA1 ports on the primary and
secondary appliances, and that you are using a crossover cable. If the
appliance cannot detect the secondary appliance, check the connection
and restart the secondary appliance. When this is done, click the Refresh
button to redetect the secondary appliance.
5
6
For better performance, leave the HA secret blank. This shared secret is
used to encrypt HA state-sync information. VPN tunnel information is
always encrypted even if this encryption is disabled.
7
8
9
10 After the system has restarted, log in to the primary appliance again.
11 Click HASync to copy the entire configuration and policy database
The Secondary appliance must be set (or reset) to the factory default
configuration for HASync to work. The HASync button will not be
10
Type the System Name of the primary and secondary appliance.
If desired, click Encrypt all HA Communication, and type and
confirm a Shared Secret.
This feature is optional, and can be left blank if you do not need to encrypt
information sent between these appliances during normal operation. Encryption is
not necessary if the HA1 interfaces are connected directly with a crossover cable.
Change the secondary system IP addresses and masks so they are
different from those for the primary system.
Click the Monitor checkboxes to activate monitoring on specific
interfaces.
Click Apply to apply the default HA configuration to the current
(Primary) appliance.
The system restarts.
Open the System Configuration window, and click on the High
Availability tab.
The HA status should show that the current appliance is Primary and Takeover.
from the Primary appliance to the Secondary appliance.
N
OTE
N
OTE
N
OTE
High Availability for Vcontroller and CPM