TABLE OF CONTENTS ClusterXL is not available for the Nokia platform. This is because Nokia provides its own HA and load-sharing solutions. In this section, we look at the load-sharing cluster solution that Nokia provides on IPSO 3.6-FCS4, how to configure it, and how to configure FireWall-1 NG FP3 so that you have a complete Nokia load-sharing solution. We then talk about how you can test the cluster and go over any special considerations for this solution.
To configure a Nokia load-sharing cluster, you need to take the following steps:
Configure the interfaces of a Nokia.
Configure FireWall-1.
Configure clustering in Voyager.
We assume that you have installed the latest version of IPSO 3.6 on your Nokia and that you have the Check Point FireWall-1 NG FP3 package installed and configured. As with setting up all clusters, it is recommended that you complete and test the physical connectivity first so that any problems that you encounter later aren t due to a misconfigured switch or interface, because these could be difficult to spot later.
In our example shown in Figure 6.51, you can see a sample Nokia cluster topology.
The main difference in network topology between Nokia clustering and using Check Point ClusterXL is that you require a dedicated network for Nokia cluster control communications. This is in addition to the Check Point state sync network.
As you can see from Figure 6.51, each network that has a VIP also...
