I have to configure 2 McAfee Web Gateway Appliances as high availability/load balance for each.
1- From where can i configure in 1st appliance that you have 2nd Appliance too in case of load/ service down of 1st appliance?
2- From where can i configure in 1st appliance that from specific Hardware resources, Bandwidth limit; transfer users to 2nd appliance?
2- From where can i configure in 2nd appliance that it has 1st appliance and work/active only when 1st appliance order/wants?
Solved! Go to Solution.
Dear Troja and Bgartama
Thanks for the Articles, after reading this i have confusion in Central Management of both appliance as:
1- I have deployed 2 MWG appliances in my environment and want if 1st appliance is down then 2nd should be Active automatically. e.g. All internet traffic of end users should be redirect to 2nd appliance. Please find the attached picture, is this configuration correct?
looks like your configuration is false. You have to rethink how central management and HA cluster works.
Central Management is not HA-Cluster. The IP-address shown in your screenshot is the listening IP of each MWG central Management node. Therefore, if you have one network interface configured, this must be the IP of MWG itselft.
Change it and add the 2nd node to the central management. If this is fine, you can see both systems in the GUI and you are not able to connect to the GUI on the second system. Check this. :-)
HA-Cluster will be configured under "Proxies.....". You have to change the proxy mode and VRRP must be configured.
Take a look at the links above, where HA-Cluster configuration and testing is explained in detail.
You are Good .
Actually i asked 2 questions in a single topic therefore i created a separate topic and marked 1 questions as Answered and this discussion will be continue.
I have to learn more about HA, i will come back in this topic again
at least some errors. You need at least 3 IPs. A physical for any mwg and one virtual. The Management IP, in your szenario, is the physical IP of your system. The virtual IP must not be the physical IP of your MWG appliance.
You also need no Source IP bases exception.
I have 1st appliance as 192.168.1.120 and 2nd as 192.168.1.121, can you please attach an screenshot for my better understanding how should i configure this?