I have 3 MWG clusters (2*4500C and 1*4500B) running independent policies. I want to manage all 3 clusters so that policy is in sync at any time. What is the best way to manage them?
the easiest way is to build one policy which for your complete MWG environment. You can deplay a virtual machine just for managing the policy.
Afterwards you can remove the appliances from the central management and add them to the new management MWG.
The system settings are not changed.
It is also useful to make a backup of any cluster before changing the central management cluster.
Hope this helps,
my current requirement is to have 2 clusters at siteA to be in sync (policy) with each other. The other clsuter is at siteB. So inorder to manage all MWG clusters using VM, do i need an additonal license. Also to add the VM, do i use the VIP or the individual IP's? FYI, we have 3 clsuters configured in traditional proxy cluster.
no, you need no license, MWG is licensed by user.
1) Yes, you can configure mwg using to different HA clusters but the same policy on every mwg.
2) if you want to configure different policies for every HA Cluster (Site A uses a different policy as Site B) you have to separate it in the ruleset. In this case you can use e.g. the proxy system name.
thq, i can built a new VM with the same version as others MWG's and add them to the CM using the VIP for policy sync. By doing this will i be retaining the individual settings/configuration of the boxes as well as the cluster configuration settings?