Skip navigation
McAfee Secure sites help keep you safe from identity theft, credit card fraud, spyware, spam, viruses and online scams
507 Views 3 Replies Latest reply: Jun 13, 2013 5:30 AM by shubham87 RSS
shubham87 Newcomer 42 posts since
Aug 11, 2012
Currently Being Moderated

Jun 12, 2013 6:26 AM

NIPS in HA

Hi Guys,

 

Have some queries regarding the HA configuration.

 

Suppose i have a pair of firewall working in active-passive mode. Inside interfaces of the firewall are connected to 1A ports on the NIPS. 1B port on NIPS are connected to the respective switches.

 

From what i understand, in case the link between firewall and ips goes down, firewall failover will happen and traffic will be moved to other firewall.

 

But what will happen in case the link between NIPS and switch goes down?

 

Regards

Shubham

  • gfergus1 McAfee SME 125 posts since
    Nov 4, 2009
    Currently Being Moderated
    2. Jun 12, 2013 11:00 AM (in response to shubham87)
    Re: NIPS in HA

    When the sensor is configure in inline mode the sensor monitor ports are set up as a port pair.  If 1B goes down then 1A will automatically be brought down also.

     

    Your firewall should be able to detect this and failover to the secondary device.

     

    Most firewall vendors have an option to configure a ping test or some other type of heartbeat that will allow it to detect that traffic is not passing and trigger a failover also.

More Like This

  • Retrieving data ...

Bookmarked By (0)

Legend

  • Correct Answers - 5 points
  • Helpful Answers - 3 points