Forum Discussion
NimbostratusTraffic learning on redondant pair config
Hello Team,
I have a question related to ASM traffic learning information in redondant pair configuration;
the learned traffic on the acive member is it synchronised on the passive one.
in other words, does the traffic learning info be part of the security policy that is synchronised in a redondant pair configuration ?
i really think that it is, but i'm not sure.
tHKS all !!
6 Replies
natheCirrocumulus
Fulmetal - I'm afraid the learning suggestions are not synced to the other box.
N
FulmetalThks for the reply nathan,
Does it mean that all traffic that is learned in a security policy is not enforced on the passive member ?
if a failover occurs, it will be a delta regarding the enforced security policy of the stanby member ?
tHKS !
- nathe
If you enforce and then apply a traffic learning suggestion to a policy then a configsync will sync this to the passive member. It's just that I don't believe the learning suggestions are synced across.
- Fulmetal
what is the impact if the suggestion are not synched in your point of view ?
- nathe
no impact really, if they are only suggestions and not enforced then you've only lost the info gathering, rather than the enforcement of the security policy item.
- Fulmetal
Good , many thks Nathan for the reply !
