Chapter 4: Networks
Note: On a BSC-600 or BSC-1200, the admin interface must be disabled in order to use
the failover feature.
Note: On a BSC-600 or BSC-1200, a normal CAT-5E ethernet cable is used to connect
the two failover ports (a crossover cable is not needed).
Note: When failover occurs, users with an IPSec connection will need to restart their
tunnel. However, network availability is maintained during failover.
The connection between failover ports must be a dedicated physical or logical one. You
can choose one of the following connection options:
•
Cross cable between both controllers
•
Dedicated switches for failover only
•
Dedicated VLAN for the failover ports only
Normal Operation
Within a failover configuration, the primary BlueSecure Controller is normally active and
the secondary BlueSecure Controller is idle, as shown in Figure 4-17.
Failover State
When the secondary BSC takes over, its role changes and it functions as the primary, as
shown in Figure 4-18.
Recovery State
If the original primary recovers, it then becomes the secondary, as shown in Figure 4-19.
Therefore, no manual intervention is needed to "reset" roles when the original primary
BSC recovers.
Configuring the Primary BSC
To configure the parameters for a failover configuration, complete the following steps on
primary
the
4-26
Figure 4-17: Failover - Normal State
BSC: