Active/Passive Cluster Behavior
Hi to all,
I have to create an active/passive firecluster with two T80. My configuration is this:
4 WAN (2 of these will be discontinued shortly)
1 stack consisting of 2 switches
Each device is connected to both switches in the stack,except firewalls. ISP says their routers don't support LAGs so I'll have to enable STP to avoid loops.
Here is a simple wiring diagram (I didn't drawn down the DMZ):
My question is: if the switch to which the active firewall is connected goes faultly, would the cluster activate the passive node even if it continues to hear the other node via heartbeat? if not, my network will be isolated.
Since each firewall is connected to only one switch, how can I configure the infrastructure to support the faults of a switch? Do I connect the heartbeat interfaces to the switches so that if they fail, the firewalls can't hear anymore?
Thanks a lot