Switch to Higher Priority Security Gateway means that if the lower priority member has control and the higher priority member is restored, then control will be returned to the higher priority member.This mode is recommended if all members are equally capable of processing traffic, in order to minimize the number of failover events. Maintain Current Active Security Gateway means that if one member passes on control to a lower priority member, control will be returned to the higher priority member only if the lower priority member fails.High Availability and Load Sharing in ClusterXL ClusterXL Administration Guide R77 Versions | 31 In a High Availability configuration, when the failed Security Gateway in a cluster recovers, the recovery method depends on the configured cluster setting. In a Load Sharing configuration, when the failed Security Gateway in a cluster recovers, all connections are redistributed among all active members. Posts and Telecommunications Institute of Technology. SmartReporter and SmartEvent functionality is integrated into SmartConsole. What Happens When a Security Gateway Recovers? SmartDashboard A legacy Check Point GUI client used to create and manage the security settings in R77.30 and lower versions. Yes, since “Switch to higher priority cluster member” option is enabled by default on the Global Properties Yes, since “Switch to higher priority cluster member” option on the cluster object properties is enabled by default No, since “maintain current active cluster member” option is enabled by default on the Global Properties No, since “maintain current active cluster member” option on the cluster object properties is enabled by default When it re-joins the cluster, will it become active automatically? After an hour, FW_A’s interface issues were resolved and it became operational. Around 1100 am, its interfaces went down and this caused a failover.
FW_A was active and processing the traffic in the morning. FW_A is configured to have higher priority than FW_B. Analyze logs and make necessary network report using smart reporter console. The cluster is configured to work as HA (High availability) with default cluster configuration. Worked extensively on Checkpoint R77.30, R80.10 and R80.30 Firewalls. There are two R77.30 Security Gateways in the Firewall Cluster.