The ________ Check Point ClusterXL mode must synchronize the virtual IP and MAC addresses
on all clustered interfaces.
A.
HA Mode Legacy
B.
HA Mode New
C.
Mode Unicast Load Sharing
D.
Mode Multicast Load Sharing
Get 50% Discount on All Your Purchases
at PrepAway.com - Latest Exam Questions
This is ONE TIME OFFER
50%
A
New Mode HA
from student manual:
When configured to work in the High Availability Legacy Mode, all cluster members are assigned the same shared IP and MAC addresses.
A shared interface is an interface whose MAC and IP addresses are identical to those of another interface.
The principal advantage of using this mode is that moving from a single gateway deployment to a High Availability cluster requires no changes to IP addresses or routing.
Any switch or hub can connect to cluster interfaces.
The disadvantage is that configuring this mode is complicated, and must be performed in a precise sequence.
0
0
sorry:
A
Legacy Mode HA
0
0
I think its New Mode HA…
from clusterxl guide
High Availability (a.k.a. Active/Standby) mode- Cluster Mode, where only one cluster member (‘Active’ member) processes all traffic, while other cluster members (‘Standby’ members) are ready to be promoted to ‘Active’ state if ‘Active’ member fails.
In HA New Mode, the cluster Virtual IP address (that represents he cluster on that network) is associated:
with physical MAC Address of ‘Active’ member
with virtual MAC Address (refer to sk500840 how to enable ClusterXL Virtual MAC mode)
In HA Legacy Traditional Mode, there are no Virtual IP addresses, the cluster members share identical IP and MAC addresses, so that the Active cluster member receives from a hub or a switch all the packets that were sent to cluster IP address.
0
0
B. New Mode – there is no Virtual IP in Legacy Mode
0
0
To my understanding:
HA New mode has virtual IP address and when standby member becomes active it will advertise itself by sending GARP with its own MAC but virtual IP.
HA Legacy mode – No virtual IP. Both members are configured with the same IP address.
LS Unicast – stuff with pivot member where pivot receives packet and decide which member of cluster will process that packet.
Personally I would go for LS Multicast as all members are active and processing traffic so in order to receive the same packet they must share Virtual IP and virtual (multicast) MAC.
For both HA modes and LS Unicast mode there is option to enable VMAC to avoid storming network when too many manual NAT entries are defined and speed up failover but still for me that LS Multicast is the most plausible answer.
More reading in ClusterXL admin guide starting on page 28.
BTW I could not find HA modes in Student Manual. There is HA Management but not HA cluster in detail.
0
0
Forgot to add it’s R77 ClusterXL admin guide and fresh download of this document it starts on page 25.
0
0
Question is …
… must synchronize the virtual IP and MAC addresses on all clustered interfaces.
In new HA, only active member has virtual MAC address in interface.
Only in “Multicast Load Sharing” every clusterXL member has its own MAC + one additional common cluster MAC.
Therefore, “D” is the right answer.
0
0
I would say that correct is answer is D :
ClusterXL uses the Multicast mechanism to associate the virtual cluster IP addresses with all cluster members. By binding these IP addresses to a Multicast MAC address, it ensures that all packets sent to the cluster, acting as a gateway, will reach all members in the cluster.
Each member then decides whether it should process the packets or not. This decision is the core of the Load Sharing mechanism: it has to assure that at least one member will process each packet (so that traffic is not blocked), and that no two members will handle the same packets (so that traffic is not duplicated).
0
0
Answer is D, Load-Sharing Multicast Mode
Note that IT synchronoizes the virtual IP AND MAC Address. HA Mode New uses the MAC address of whosoever is ‘Active'(hence MAC address is never the same everytime) and devices are Active/Standby
The question is kind of tricky, needs more words in it really.
0
0
Gave it a thought, considering it does not explicitly say “Multicast MAC address” i think the answer is HA Mode New
PS: That’s my point the question is tricky
0
0
B. HA Mode New
https://sc1.checkpoint.com/documents/R76/CP_R76_ClusterXL_AdminGuide/7292.htm
ClusterXL’s New High Availability mode designates one of the cluster members as the active machine, while the other members remain in stand-by mode. The cluster’s virtual IP addresses are associated with the physical network interfaces of the active machine (by matching the virtual IP address with the unique MAC address of the appropriate interface). Thus, all traffic directed at the cluster is actually routed (and filtered) by the active member.
0
0