If a device goes offline and is not able to reconnect, e. g. due to hardware issues, the administrator needs to react immediately and solve the issue or replace the defective device. A cluster that does not work properly is not able to prevent downtimes. It is therefore necessary to monitor the firewalls when HA is activated. This can be effected as follows:
- Web client You can monitor the HA feature in the Info area and in the HA menu (see High Availability). You can identify the firewall that is currently set as the master node from the local IP address.
-
SNMP
SNMP is the de-facto standard for monitoring the firewall. Refer to SNMP Settings for more information on the firewall configuration and how to download the necessary MIB files. SNMP
requests towards the firewall will help you to identify the firewall that is currently active by identifying the IP
address of the cluster link.
Important: You can only monitor the slave node through the cluster link. To get access to this interface, use a switch as described in Initial Setup.
-
Remote Syslog Server
You can use a remote syslog server to monitor HA events as cluster messages are included in the syslogs. Role switches
are clearly logged. You can get the master IP address from the logs as well.
Important: The logs for the slave node are not sent to the remote syslog server. The logs for the master node are sufficient for retrieving all necessary information.
- Command Center Use the LANCOM R&S®UF Command Center to monitor the HA status of several firewalls, including the license status and hardware resources.