Sophos XG Clustering & Redundancy Limitations

Question

Hi all, 
 Regarding the clustering/HA features of XG. The best practice advice seems to be that the clustering is only supported within a rack - e.g. two XGs, with a CAT6 cable directly connecting one HA port to another. Clustering two XG firewalls across two geographic sites is - correct me if i'm wrong - not supported. Even if connected by high-bandwidth, low latency links. 
 Therefore to achieve redundancy, you need to run two separate firewalls, two separate sets of firewall rules, public IP addresses, etc. 
 This seems like quite a limitation - is cross-site clustering on the road map for a future release? How do other XG users correctly achieve redundancy with two data centers? 
 Thanks

LuCar Toni · Accepted Answer

The issue here with Split Brain Scenario&acute;s (Geographic separate HA Appliances) is you miss some feature which prevents a master master situation. 
 It will work, so you can basically setup this scenario, but if this link gets cut, both appliances will go into Master (Primary) state and it will get very messy. 
 As far as i know, there are plans to implement such features for backup interfaces to prevent this. 
 Here is the Feature Request: https://ideas.sophos.com/forums/330219-xg-firewall/suggestions/34644892-high-availability-with-backup-interface 
 
 Most of the setups i saw, use some kind of switching mechanism to prevent the HA Link to fail and still use Split brain or use two HA cluster. 
 Still depends on the Load, because you need to keep in mind, the appliance will sync a lot traffic in real time.