Table of Contents
Advertisement
Network Setup menu options
Internet connection failover
Internet connection failover
UTM Firewall appliances support three connection levels: Primary, Secondary, and Tertiary. A connection
level consists of one or more Internet connections. When all primary connections are functioning as
expected, the primary connection level is deemed to be up. If one or more of the primary connections
should fail, the appliance drops back to the secondary connection level. This typically involves bringing up a
secondary Internet connection until the primary Internet connection or connections become available
again. A scenario where secondary and tertiary levels are particularly useful is when multiple connections
share the same public IP address, and only one connection at a time is desired to be active at any given
time. You can also optionally configure the tertiary failover level. If one or more of the secondary
connections should fail, the appliance drops back to the tertiary connection level. This is typically a last
resort dialup link to the Internet, but can be any kind of network connection. The primary and secondary
connection levels are tested in turn until one becomes available. Internet failover is not stateful. Any
network connections that were established through the failed primary connection must be re-established
through the secondary connection.
Editing failover connection parameters
The initial step of configuring failover is to set failover parameters for each connection. These parameters
specify how to test whether a connection is up and functioning correctly. Then you modify the failover
levels.
To set Connection Failover testing
From the Network Setup menu, click Network Setup. The Connections page appears.
1
Click the Failover & H/A tab. A list of the connections that you have configured is displayed under the
2
Connection Failover tab, alongside ticks (check marks) and cross marks
indicate how the connection behaves at each failover level:
• Enabled — Check mark (tick)
• Required — Check mark with a small plus sign
• Disabled — Cross mark.
Figure 68 Connection Failover
Click the Edit icon next to the connection for which you wish to edit the failover parameters.
3
The edit page for failover parameters appears
4
displayed, along with several connection testing options.
Figure 69 Edit page for failover parameters
McAfee UTM Firewall 4.0.4 Administration Guide
(Figure
69). The Name and Port of the connection are
(Figure
68). The ticks and crosses
69
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
