Howdy!
My company is moving our XG firewalls from one data center to another. The move requires configuration changes of various sorts (e.g., WAN port IP address). The firewalls are currently running in HA Active-Passive mode. I'll call the active device at the old data center "Device A" and the standby device "Device B" to avoid future confusion. I'd like to move the secondary device (Device B) to the new data center, configure it appropriately and test it. Once I'm happy that it's configured correctly, I would then move the other device (Device A) from the old data center to the new one and install it there.
Without breaking HA prior to moving Device B, will Device A come up as the secondary at the new data center and receive the updated configs from Device B? To avoid issues with having two firewalls possibly active at the same time, I won't connect device B to the WAN or LAN until I'm sure of B's status.
Or, should I break HA prior to moving Device B, configure B appropriately at its new home, then re-establish HA with B as the active box and A as the secondary/passive? I figure this would be the safer route, but it'd be nice not to have to fiddle with HA unless I have to. Again, to avoid issues with having two firewalls possibly active at the same time, I won't connect B to the WAN or LAN until HA is re-established.
Thanks for your thoughts and ideas.
Sincerely,
Chris M.
This thread was automatically locked due to age.
