Product ManualXG-7100-1U
1. Navigate to Firewall > Rules on the SYNC tab
2. Click at the top of the list to create a new rule
3. Set Action to Pass
4. Set Protocol to any
5. Set Source to SYNC Net
6. Set Destination to any
7. Set Description to Temp rule for sync
8. Click Save
9. Click Apply Changes
Note: The rule on the secondary is different, but that is intended at this point. Once the first configuration synchro-
nization has taken place, the temporary rule on the secondary will be replaced by the rules from the primary. Seeing
that the rules on the Sync interface changed is a good indicator that it worked!
2.2.2 Configure pfsync
State synchronization using pfsync must be configured on both the primary and secondary nodes to function.
First on the primary node and then on the secondary, perform the following:
1. Navigate to System > High Avail. Sync
2. Check Synchronize States
3. Set Synchronize Interface to SYNC
4. Set pfsync Synchronize Peer IP to the other node. Set this to 172.16.1.3 when configuring the primary
node, or 172.16.1.2 when configuring the secondary node
5. Click Save
2.2.3 Configure XMLRPC
Warning: Configuration synchronization must only be configured on the primary node. Never activate options
in this section on the secondary node of a two-member cluster.
On the primary node only, perform the following:
1. Navigate to System > High Avail. Sync
2. Set Synchronize Config to IP to the secondary node’s Sync interface IP address, 172.16.1.3
3. Set Remote System Username to admin.
Note: This must always be admin. No other user will work!
4. Set Remote System Password to the admin user account password and be sure to confirm the password.
2.2. Configuring a HA Cluster 53
To Next Page
Loading...
