Product ManualXG-7100-1U
3. Set Action to Pass
4. Set Source to SYNC Net
5. Set Destination to SYNC Address
6. Set Destination port range to 443 or choose HTTPS (443) from the drop-down selector
7. Set Description to Allow configuration synchronization
8. Click Save
Set up a rule to allow state synchronization:
1. Click at the top of the list to create another new rule
2. Set Action to Pass
3. Set Protocol to pfsync
4. Set Source to SYNC Net
5. Set Destination to any
6. Set Description to Allow state synchronization
7. Click Save
Set up a rule to allow ICMP echo (ping) for Diagnostics:
1. Click at the top of the list to create another new rule
2. Set Action to Pass
3. Set Protocol to ICMP
4. Set Source to SYNC Net
5. Set Destination to SYNC Net
6. Set Description to Allow ICMP echo (ping) for Diagnostics
7. Click Save
8. Click Apply Changes
When complete, the rules will look like the following, which also includes a rule to allow ICMP echo (ping) for
diagnostic purposes.
Fig. 1: Example Sync Interface Firewall Rules
On the secondary node:
2.2. Configuring a HA Cluster 52
To Next Page
Loading...
