If the flow director responds that there is no flow owner, the node drops the packet.Ĭluster nodes share connection state.In this case, the node will forward the packet through the CCL to the flow owner. The flow director will respond with the location of the flow owner (if there is one).If a node receives a packet that is not a SYN packet and does not belong to a flow it owns, it will query the flow director.If a node receives the SYN packet of a flow, it notifies the flow director that it is now the flow owner of this flow.Asymmetric traffic redirection to the flow ownerĪs an example of cluster operation, let us focus on TCP traffic.Flow Director (deterministic) – keeps track of the flow ownerĬluster Control Link (CCL) for internode communication:.Flow Owner (nondeterministic) – receiver of the first packet of a flow.Control Node – synchronizes cluster configuration.Basic Clustering Concepts – Physical or VirtualĬlustering allows multiple Cisco Secure Firewalls to function as a single logical firewall.īefore focusing on virtual firewalls, let's discuss key concepts and terminology that apply to both physical and virtual firewalls.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |