1. Home
    2. /
  2. Manuals
    3. /
  3. Nokia
    4. /
  4. IP45
    5. /
  5. 44
Page 216 / 342 Scroll up to view Page 211 - 215
11
High-Availability
216
Nokia IP45 Security Platform User’s Guide v4.0
Configuring High-Availability by Using the GUI
This section describes how to configure high-availability by using the graphical user interface
(GUI).
Note
Before configuring high-availability, set the internal IP addresses of the device and the
network range. Each device must have a different internal IP address. For more information,
see
“Changing IP Addresses”
on page 113.
To configure high-availability by using GUI
1.
Choose Setup from the main menu.
The Firmware page opens.
2.
Click High Availability.
The High Availability page opens.
3.
Check the Gateway High Availability check box.
All the existing internal interfaces are displayed.
4.
To enable high availability, select HA next to the interface type.
5.
Click the Synchronization radio button next to the type of interface to use as synchronization
interface.
6.
In the Virtual IP text box, enter the default gateway IP address. This can be any unused IP
address, and must be same for all the devices.
7.
In the My Priority text box, enter the priority value of the gateway.
Page 217 / 342
High-Availability over VPN
Nokia IP45 Security Platform User’s Guide v4.0
217
Value: 1–255
8.
Enter the value in Internet-Primary field. This field should contain the value to reduce the
priority of the gateway if the primary Internet connection becomes inactive.
Value: 0–255
9.
Enter the value in Internet-Secondary field. This field should contain the value to reduce the
priority of the gateway if the secondary Internet connection becomes inactive. For more
information on configuring backup connection, see
“Configuring a Backup Internet
Connection”
on page 93.
Value: 0–255
10.
In the text box next to LAN1 enter the amount to reduce the priority of the gateway if the
Ethernet link of the LAN port is lost.
11.
In the text box next to DMZ, type the amount to reduce the priority of the gateway if the
Ethernet link of the DMZ/WAN2 port is lost.
12.
Under Advanced, Group ID text box, type the Identity number of the cluster to which the
gateway should belong.You need not change this value if only single HA cluster exists.
Value:1-255
Default value:55
13.
Click Apply.
14.
If desired, configure WAN high-availability for both the primary and secondary Internet
connection. This setting should be the same for all the devices. For more information, see
“Using the Setup Wizard”
on page 73.
High-Availability over VPN
High-availability over VPN supports the following scenarios.This section includes the detailed
description about the following topics:
±
Dual Homing
±
Generic High-Availability
±
Advanced High-Availability
Dual Homing
The Nokia IP45 security platform v4.0 supports dual homing Internet connection that provides
an uninterrupted connection to the ISP. The Internet connection that uses DSL or cable modem
or static IP is the active and permanent connection. The dial-up connection is stated as the
passive connection, which remains in backup mode. When the permanent connection fails, the
dial-up connection automatically becomes active.
Page 218 / 342
11
High-Availability
218
Nokia IP45 Security Platform User’s Guide v4.0
Figure 5
Dual Homing
Configuring for Dual Homing ISP Connectivity
The following sections give information about how to configure the Nokia IP45 dual homing
feature:
±
Configuring primary Internet profile for DSL/ Cable/Automatic DHCP (see
“Configuring an
Internet Connection”
on page 73).
±
Configuring secondary Internet profile for dial-up mode (see Chapter 5,
“Configuring Dial-
Up”
on page 90)·
±
Configuring modem parameters.
Use the following commands to configure modem parameters. For more information, see the
Nokia IP45 Security Platform CLI Reference Guide Version, 4.0
set modem dialmode <tone | pulse>
set modem extrainit string
set modem manufacturer <standard | custom>
set modem rate <9600 | 19200 | 38400 | 57600 | 115200 | 230400 |460800>
Use the following commands to view the modem parameters:
show modem <all | dialmode | extrainit | manufacturer | rate>
Page 219 / 342
High-Availability over VPN
Nokia IP45 Security Platform User’s Guide v4.0
219
Configuring ISP Dial-Up Profiles
Use the following command to configure ISP dial-up profiles by using the CLI wizard:
wizard dialup
For more information about how to use other dial-up commands, see the
Nokia IP45 Security
Platform CLI Reference Guide
,
Version 4.0
.
Use the following commands to modify ISP dial-up profiles:
set dialup profile <id>
user <username>
password <password>
number <telephone Number>
[authentication <none | pap | chap | any>
externalip <ip_address>
mtu <value>
staticdns <yes | no>
dns1 <ip_address>
dns2 <ip_address>
Use the following command to delete selected ISP dial-up profiles:
set dialup profile <id> disable
±
Advanced
—device monitors the status of BGP peers and dial-up, based on the WAN
failover node. Generic High-Availability.
Generic High-Availability
Generic high-availability is implemented in Nokia IP45 v4.0. Using this option, you can create a
high-availability cluster consisting of two IP45 devices. For example, you can install two IP45
devices on your network, one acting as the master, the default gateway through which all
network traffic is routed, and the other as backup. If the master fails, the backup automatically
and transparently takes over all the roles of the master. This ensures that your network is
consistently protected by an IP45 device and is connected to the Internet.
Page 220 / 342
11
High-Availability
220
Nokia IP45 Security Platform User’s Guide v4.0
Figure 6
Generic High-Availability
The gateways in a high-availability cluster have a separate IP address within the local network.
In addition, the gateways share a single virtual IP address, which is the default gateway address
for the local network. Control of the virtual IP address happens as follows:
±
Each gateway is assigned a priority, which determines its role. The gateway with highest
priority acts as the active gateway and uses the virtual IP address. The remaining gateways
remain passive.
±
The active gateway sends periodic signals, or heartbeats to the network through a
synchronization interface.
Note
The synchronization interface can be any internal network existing on both gateways.
±
If the heartbeat from the active gateway stops (indicating that the active gateway has failed),
the gateway with the next highest priority becomes the new active gateway and takes over
the virtual IP address.
±
When a gateway that was offline becomes active again, or the priority of a gateway changes,
the gateway sends a heartbeat notifying the other gateways in the cluster. The gateway with
highest priority now becomes the active gateway.
The IP45 device supports Internet connection tracking, which means that each device tracks the
status of its Internet connection and reduces its own priority by a user-specified value, if its
Internet connection is inactive. If the priority of the active gateway drops below the priority of
another gateway, then the gateway with highest priority becomes the active gateway.
While configuring high-availability, you can specify that only the active gateway should connect
to the Internet. This is called WAN high-availability, and is useful in the following conditions:
±
Your Internet subscription cost is based on connection time, and therefore having the passive
device needlessly connected to the Internet costs you.

Rate

3.5 / 5 based on 2 votes.

Popular Nokia Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top