ZyXEL Communications USG 2000 7.14.4 Deploy the Backup ZyWALL, 7.14.5 Check Your Device HA Setup

Chapter 7 Tutorials

7.14.4 Deploy the Backup ZyWALL

Connect ZyWALL B’s ge1 interface to the LAN network. Connect ZyWALL B’s ge2 interface to the same router that ZyWALL A’s ge2 interface uses for Internet access. ZyWALL B copies A’s configuration (and re-synchronizes with A every hour). If ZyWALL A fails or loses its ge1 or ge2 connection, ZyWALL B functions as the master.

7.14.5 Check Your Device HA Setup

1To make sure ZyWALL B copied ZyWALL A’s settings, you can log into ZyWALL B’s management IP address (192.168.1.5) and check the configuration. You can use the Maintenance > File Manager > Configuration File screen to save copies of the ZyWALLs’ configuration files that you can compare.

2To test your device HA configuration, disconnect ZyWALL A’s ge1 or ge2 interface. Computers on LAN should still be able to access the Internet. If they cannot, check your connections and device HA configuration.

Congratulations! Now that you have configured device HA for LAN, you can use the same process for any of the ZyWALL’s other local networks. For example, enable device HA monitoring on the DMZ interfaces and use an Ethernet switch to connect both ZyWALLs’ DMZ interfaces to your publicly available servers.