Configure Virtual MAC Addresses
You can configure active and standby MAC addresses for failover using the following methods in the Secure Firewall Management Center:
-
From the Advanced tab on the Edit Interface page during interface configuration; see Configure the MAC Address.
-
From the Add Interface MAC Address dialog-box which is accessed from the High Availability page; see this procedure.
NoteTo configure the MAC address in both primary and secondary units (so that the MAC address is transferred to all sub-interfaces to both the high-availability units), the recommended approach is to use the Interfaces tab to replicate the MAC addresses on sub-interfaces over both active and standby high-availability units.
If you configure active and standby MAC addresses in both locations, the addresses defined during interface configuration take precedence for failover.
You can minimize loss of traffic during failover by designating active and standby MAC addresses to the physical interface. This feature offers redundancy against IP address mapping for failover.
Procedure
Step 1 | Choose . | ||
Step 2 | Next to the device high-availability pair you want to edit, click Edit ( | ||
Step 3 | Click High Availability. | ||
Step 4 | Click the Add ( | ||
Step 5 | Choose a Physical Interface. | ||
Step 6 | Enter the Active Interface Mac Address. | ||
Step 7 | Enter the Standby Interface Mac Address. | ||
Step 8 | Click OK.
|
)