Configuring high availability

Use the Sensor High Availability Mode area of the Security Interfaces page to configure the Network IPS appliance for high availability support.

About this task

Navigating in the Network IPS Local Management Interface: Manage System Settings > Network > Security Interfaces

Navigating in the SiteProtector™ system: select the Security Interfaces policy

Procedure

In the Sensor High Availability Mode area, select one of the following options:
Option Description
HA Protection Puts all monitoring adapters into inline protection mode.
HA Simulation Puts all monitoring adapters into inline simulation mode. Non-HA adapter mode settings are preserved, but the appliance does not use them unless you switch the appliance back to normal mode.
Normal Leaves all adapter modes as shown in the adapter list. These modes were configured during first-time setup. HA is off.
Geographical HA Matches the quarantine rules on both appliances. The appliances share a quarantine state.
  • Authentication Level: Determines the trust level for the geographical HA pair.
    • first-time-trust: The appliances exchange encryption keys automatically.
    • explicit-trust: The appliances do not exchange encryption keys because you manually put the encryption keys on each appliance. For more information about encryption, see Geographical HA and encryption keys.
  • HA Address: Type the IP address for the geographical HA pair.