Symantec 10268947 User Guide - Page 43
About fail-open, About deploying node clusters
UPC - 037648243766
View all Symantec 10268947 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 43 highlights
Getting Started 43 About deploying node clusters interfaces in the pair. For a blocked UDP event, the appliance drops the packet and marks the flow as dropped. For policies configured with both blocking and alerting, you can run Network Security with blocking disabled until you are sure the policy is correct. If you decide that the configured event types should be blocked, you can change the policy to enable blocking with a single mouse-click in the Network Security console. About fail-open Fail-open is an option when using in-line mode and is the default for passive mode. Fail-open means that if the appliance has a hardware failure, network traffic will continue. Since the Symantec Network Security 7100 Series appliance is directly in the network path while deployed using in-line mode, fail-open capability requires the purchase and installation of a separate device. The Symantec Network Security In-line Bypass unit has been custom designed to provide fail-open capability for the Symantec Network Security 7100 Series. The bypass unit is available in two models, which accommodate two or four in-line interface pairs respectively. Fail-open is available for all copper gigabit or Fast Ethernet interfaces on the appliance. It is not an option for fiber interfaces at this time. The In-line Bypass unit is only necessary for fail-open when appliance interfaces are configured for in-line mode. All interfaces configured in passive mode are fail-open by default. About deploying node clusters The full power and advanced features of Symantec Network Security become available when you create a group or cluster of nodes, and establish one node as the master. A cluster of software or appliance nodes enables Symantec Network Security to monitor all parts of a network from the central Network Security console, and share information between nodes. In a clustered deployment, the master node can check, update, and synchronize all nodes in the cluster. High-availability failover deployment becomes available using pair configurations of active and standby nodes. Users can view all Network Security