Does the TCP Flow Violation functionality (e.g., 'Permit'), benefits from the fail-over packet exchange and port clustering on a fail-over group?
I need to know if both sensors share all packets in order to reassemble out-of-order TCP segments on both sensors of the cluster.
Thanks in advance,
Yes. In a fail-over setup, both sensors see exactly the same packets (via the cable connection they share), so out of order packets can be managed across both sensors.
Download the new ePolicy Orchestrator (ePO) Support Center Extension which simplifies ePO management and provides support resources directly in the console. Learn more about ePO Support Center
2821 Mission College Blvd.
Santa Clara, CA 95054 USA
Consumer Support | Enterprise Support | McAfee.com
Legal | Privacy | Copyright © 2019 McAfee, LLC