Hello. How about creating an MCP policy with multiple Proxy Server Addresses and using the "connect to the Proxy Server which has the fastest response time" option?
Or perhaps even better, if you know exactly which computers are to go via DMZ proxy server, create a policy specifically for them pushing their traffic to DMZ proxy.
The problem is that I can only configure one Customer Identifier in the policy, so how will it work if the proxy that generated the Customer Identifier file is not available ?
Oh, I see. I actually had this same problem, I believe. In the end I made sure that my unique customer ID and shared password were the same for each of my MWG instances. That way they generate the same Customer ID XML so any MCP redirected traffic would be fine, regardless of which instance was hit. It works fine for me.
Kbolt is right here, you'll want to make sure that all MWGs have the same customerID/secret.
This is how McAfee does it with the Cloud as well -- all share the same key for a consistent user experience.