failover实验
說明:
FW2 主防火牆 / FW1 輔防火牆
FW2主要配置:
interface Ethernet0
speed 100
duplex full
nameif office
security-level 0
ip address 10.160.28.101 255.255.255.0
!
interface Ethernet1
speed 100
duplex full
nameif sfc
security-level 0
ip address 10.142.128.101 255.255.255.0
!
interface Ethernet2
description LAN Failover Interface
speed 100
duplex full
failover
failover lan unit primary
failover lan interface failover Ethernet2
failover lan enable
failover key 123
failover interface ip failover 192.168.1.1 255.255.255.0 standby 192.168.1.2
FW1輔防火牆主要配置:
failover
failover lan unit secondary
failover lan interface failover Ethernet2
failover lan enable
failover polltime unit 8 holdtime 24
failover key 123
failover interface ip failover 192.168.1.1 255.255.255.0 standby 192.168.1.2
配置成功會有提示,而且你可通過show failover,查看:
pixfirewall# sh failover
Failover On
Cable status: N/A - LAN-based failover enabled
Failover unit Primary
Failover LAN Interface: failover Ethernet2 (up)
Unit Poll frequency 8 seconds, holdtime 24 seconds
Interface Poll frequency 5 seconds, holdtime 25 seconds
Interface Policy 1
Monitored Interfaces 2 of 250 maximum
Version: Ours 8.0(4), Mate 8.0(4)
Last Failover at: 08:16:39 UTC Feb 11 2011
This host: Primary - Active
Active time: 464 (sec)
Interface office (10.160.28.101): Normal (Waiting)
Interface sfc (10.142.128.101): Normal (Waiting)
Other host: Secondary - Standby Ready
Active time: 216 (sec)
Interface office (0.0.0.0): Normal (Waiting)
Interface sfc (0.0.0.0): Normal (Waiting)
Stateful Failover Logical Update Statistics
Link : Unconfigured.
【推荐】国内首个AI IDE,深度理解中文开发场景,立即下载体验Trae
【推荐】编程新体验,更懂你的AI,立即体验豆包MarsCode编程助手
【推荐】抖音旗下AI助手豆包,你的智能百科全书,全免费不限次数
【推荐】轻量又高性能的 SSH 工具 IShell:AI 加持,快人一步
· 被坑几百块钱后,我竟然真的恢复了删除的微信聊天记录!
· 没有Manus邀请码?试试免邀请码的MGX或者开源的OpenManus吧
· 【自荐】一款简洁、开源的在线白板工具 Drawnix
· 园子的第一款AI主题卫衣上架——"HELLO! HOW CAN I ASSIST YOU TODAY
· Docker 太简单,K8s 太复杂?w7panel 让容器管理更轻松!