Dear All
I am currently investigating the following problem;
**************************************************
To install a High Availability (resilient) SunScreen 3.1 firewall running on a Sun Solaris platform, all connections from the firewall's (both) will require a single broadcast domain i.e. connecting to a HUB according to the documentation.
For the resilient to work both firewalls will need to keep an up to date records of frames/counters on the device (hub).
I don't know if by using SPAN on a Cisco switch 2924xl port i can replace the hub with a switch, there for increase the network performance.
Comments from SunScreen Secure net 3.1 white paper;
-------------------------------------------------------
HA cannot be used on a switched networks; because switched networks forward packets based on ethernet address, packets destined for the HA cluster would be sent to only on HA host, rather than to all hosts.
--------------------------------------------------------
Unfortunately SunScreen documentation does not provide in-depth information concerning network functionality & requirement in regards to network connectivity, except for the above comments.
i just want to find out if any body has implemented these time of firewall using switches or any other information?
Many thanks to every body for your help in advance.
FSA
I am currently investigating the following problem;
**************************************************
To install a High Availability (resilient) SunScreen 3.1 firewall running on a Sun Solaris platform, all connections from the firewall's (both) will require a single broadcast domain i.e. connecting to a HUB according to the documentation.
For the resilient to work both firewalls will need to keep an up to date records of frames/counters on the device (hub).
I don't know if by using SPAN on a Cisco switch 2924xl port i can replace the hub with a switch, there for increase the network performance.
Comments from SunScreen Secure net 3.1 white paper;
-------------------------------------------------------
HA cannot be used on a switched networks; because switched networks forward packets based on ethernet address, packets destined for the HA cluster would be sent to only on HA host, rather than to all hosts.
--------------------------------------------------------
Unfortunately SunScreen documentation does not provide in-depth information concerning network functionality & requirement in regards to network connectivity, except for the above comments.
i just want to find out if any body has implemented these time of firewall using switches or any other information?
Many thanks to every body for your help in advance.
FSA