ZyXEL Communications USG 2000 7.14.1 Before You Start

Chapter 7 Tutorials

An Ethernet switch connects both ZyWALLs’ ge1 interfaces to the LAN. Whichever ZyWALL is functioning as the master uses the default gateway IP address of the LAN computers (192.168.1.1) for its ge1 interface and the static public IP address (1.1.1.1) for its ge2 interface. If ZyWALL A recovers (has both its ge1 and ge2 interfaces connected), it resumes its role as the master and takes over all of its functions again.

Figure 127 Device HA: Master Fails and Backup Takes Over

LAN

192.168.1.1 A 1.1.1.1

B

192.168.1.1 1.1.1.1

Each ZyWALL’s ge1 interface also has a separate management IP address that stays the same whether the ZyWALL functions as the master or a backup. ZyWALL A’s management IP address is 192.168.1.3 and ZyWALL B’s is 192.168.1.5.

Figure 128 Device HA: Management IP Addresses

LAN

192.168.1.3 A

192.168.1.5 B

7.14.1 Before You Start

ZyWALL A should already be configured. You will use device HA to copy ZyWALL A’s settings to B later (in Section 7.14.3 on page 168). To avoid an IP address conflict, do not connect ZyWALL B to the LAN subnet until after you configure its device HA settings and the instructions tell you to deploy it (in Section 7.14.4 on page 170).