Our next-generation firewalls support redundancy and resiliency features that ensure your firewall will continue to provide the security needed to keep your organization running safely. These features reside at both the architectural and product level, ultimately supporting high levels of reliability and availability.

Separate firewall data and control planes, device redundancy, log redundancy, and network capabilities, such as link aggregation support (LACP), are all examples of elements that result in the high availability of our security services and business continuity for your organization.

Stateful High Availability

Our next-generation firewalls support two device clusters for stateful failover. High availability (HA) links perform session and configuration synchronization. Ongoing and configurable monitoring, health checks, or administrator actions determine if, and when, a failover occurs to maintain overall security availability.

Both active/passive and active/active HA are supported. Active/passive HA continuously synchronizes state from the single, active firewall to an identical, and identically configured, passive firewall. In active/active HA, both firewalls synchronize state with each other. Then, if either device fails, the other assumes responsibility for all active sessions.  Active/active is recommended for networks with asymmetric traffic flows.

Other Redundancy and Resiliency Features

To protect the firewall from hardware component failures, our high-end firewalls support several types of hardware component redundancy. This includes: dual, hot swappable power supplies; dual, cold swappable solid state drives (SSDs); and swappable fan trays. For details, please refer to the firewall hardware spec sheets.

Our firewalls also include support features and integrations that enable overall availability in your environment. For example, Policy Based Forwarding (PBF) can be used to support redundant Internet access (e.g., between multiple providers). Integration with Application Delivery Controllers (ADCs) can also increase redundancy capability.


 

Enable High Availability

With the emergence of an application-driven economy and the persistent risk of cyberattacks, enterprises large and small are finding it critical to maintain highly available and continuous next-generation security protection for their network infrastructure.

  • 1
  • 1191