Configure Load Balancing And Optional Protocol Binding - NETGEAR SRX5308 Reference Manual

ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308
Table 6. Failure detection method settings
Setting Description
Failure Detection Select a failure detection method from the drop-down list:
Method
• WAN DNS. DNS queries are sent to the DNS server that is configured in the
• Custom DNS. DNS queries are sent to a DNS server that you need to specify in
• Ping. Pings are sent to a server with a public IP address that you need to specify
DNS Server The IP address of the DNS server.
IP Address The IP address of the ping server.
Retry Interval is The retry interval in seconds. The DNS query or ping is sent periodically after every
test period. The default test period is 30 seconds.
Failover after The number of failover attempts. The primary WAN interface is considered down after
the specified number of queries have failed to elicit a reply. The backup interface is
brought up after this situation has occurred. The failover default is 4 failures.
Note: The default time to roll over after the primary WAN interface fails is
2 minutes. The minimum test period is 30 seconds, and the
minimum number of tests is 4.
5. Click Apply to save your settings.
You can configure the VPN firewall to generate a WAN status log and email this log to a
specified address (see

Configure Load Balancing and Optional Protocol Binding

To use multiple ISP links simultaneously, configure load balancing. In load balancing mode,
any WAN port carries any outbound protocol unless protocol binding is configured.
When a protocol is bound to a particular WAN port, all outgoing traffic of that protocol is
directed to the bound WAN port. For example, if the HTTPS protocol is bound to the WAN1
port and the FTP protocol is bound to the WAN2 port, then the VPN firewall automatically
Domain Name Server (DNS) Servers section of the WAN ISP screen (see
Configure the Internet Connection
the DNS Server fields.
in the IP Address fields. The server should not reject the ping request and should
not consider ping traffic to be abusive.
Note: DNS queries or pings are sent through the WAN interface that is being
monitored. The retry interval and number of failover attempts determine how quickly
the VPN firewall switches from the primary link to the backup link in case the primary
link fails, or when the primary link comes back up, switches back from the backup link
to the primary link.
Activate Notification of Events, Alerts, and Syslogs
Connecting the VPN Firewall to the Internet
36
on page 28).
Manually
on page 271).