• SonicOS 7.1
• About SonicOS
  • Working with SonicOS
  • SonicOS Workflow
  • How to Use the SonicOS Administration Guides
  • Guide Conventions
• High Availability
  • About High Availability
    • High Availability Terminology
    • High Availability Modes
    • High Availability Encryption
    • Crash Detection
    • Virtual MAC Address
    • Dynamic WAN Interfaces with PPPoE HA
    • Stateful Synchronization with DHCP
    • Stateful Synchronization with DNS Proxy
    • About HA Monitoring
  • Understanding High Availability
    • Understanding SonicWall High Availability Operation Modes
    • About Active/Standby HA
  • Benefits of Active/Standby HA
    • Working of Active/Standby HA
    • About Stateful Synchronization
    • Benefits of Stateful Synchronization
  • How Does Stateful Synchronization Work?
    • Example of Stateful Synchronization
    • Active/Standby Prerequisites
  • Supported Platforms and Licensing for HA
    • Physically Connecting Your Security Appliances
    • Maintenance
      • Removing an HA Association
      • Replacing a SonicWall Security Appliance
• Replacing an HA Primary Unit
  • Replacing an HA Secondary Unit
    • High Availability Status
    • Active/Standby High Availability Status
    • High Availability Status
• High Availability Config
  • High Availability Licenses
  • Configuring High Availability
• Configuration of HA Active/Standby
  • Configuring Active/Standby High Availability Settings
    • Configuring HA with Dynamic WAN Interfaces
    • Configuring Network DHCP and Interface Settings
    • Disabling the SonicOS DHCP Server
    • Configuring Virtual IP Addresses
    • Configuring Redundant Ports
    • Fine Tuning High Availability
    • Advanced Settings
    • Configuring Advanced High Availability Settings
    • Monitoring High Availability
    • Configuring Active/Standby High Availability Monitoring
• IPv6 High Availability Monitoring
  • IPv6 HA Monitoring Considerations
  • SonicWall Support
• About This Document
  • Configuring Active/Standby High Availability Monitoring
  • IPv6 High Availability Monitoring
  • IPv6 HA Monitoring Considerations
• Azure Use Cases
  • Use Case 1: Manage Azure HA Firewall
  • Use Case 2: Forward LAN traffic to the External Network through the Gateway after HA Failover
  • Use Case 3: Configure DNAT on Azure HA Firewall
  • Use Case 4: Configure DNAT on Azure HA Firewall (Need to move multiple floating IPs support)
• SonicWall Support
  • About This Document

Configuring Advanced High Availability Settings

To configure advanced settings

1. Log in as an administrator to the SonicOS Management Interface on the Active Node.

2. Navigate to DEVICE | High Availability > Settings.

   

3. Set the Probe Interval to the interval, in seconds, between probes sent to specified IP addresses to monitor that the network critical path is still reachable. This interval is used in logical monitoring for the local HA pair. The default is 20 seconds, and the allowed range is 5 to 255 seconds.

   You can set the Probe IP Address(es) on DEVICE | High Availability > Advanced. See Monitoring High Availability.

4. Set the Probe Count to the number of consecutive probes before SonicOS concludes that the network critical path is unavailable or the probe target is unreachable. This count is used in logical monitoring for the HA pair. The default is 3, and the allowed range is 3 to 10.

5. Set the Election Delay Time to the number of seconds the Active Security Appliance waits to consider an interface up and stable. The default is 3 seconds, the minimum is 3 seconds, and the maximum is 255 seconds.

   This timer is useful with switch ports that have a spanning-tree delay set.

6. Set the Dynamic Route Hold-Down Time to the number of seconds the newly-active Security Appliance keeps the dynamic routes it had previously learned in its route table. The default value is 45 seconds, the minimum is 0 seconds, and the maximum is 1200 seconds (20 minutes).

   The Dynamic Route Hold-Down Time setting is displayed only when the Advanced Routing Mode option is selected on NETWORK | System > Dynamic Routing > Settings.

   In large or complex networks, a larger value may improve network stability during a failover.

   This setting is used when a failover occurs on a High Availability pair that is using either a dynamic routing protocol. During this time, the newly-active appliance relearns the dynamic routes in the network. When the Dynamic Route Hold-Down Time duration expires, SonicOS deletes the old routes and implements the new routes it has learned from routing protocols.

7. If you want Failover to occur only when ALL aggregate links are down, select Active/Standby Failover only when ALL aggregate links are down. This option is not selected by default.
8. To have the appliances synchronize all certificates and keys within the HA pair. select Include Certificates/Keys. This option is selected by default.

9. (Optional) To force synchronize the SonicOS preference settings between your primary and secondary HA firewalls, click Synchronize Settings.

   This will cause a restart of the standby device.

10. (Optional) To synchronize the firmware version between your primary and secondary HA firewalls, click Synchronize Firmware.
11. (Optional) To test the HA failover functionality is working properly by attempting an Active/Standby HA failover to the secondary Security Appliance, click Force Active/Standby Failover.
12. When finished with all High Availability configuration, click Accept. All settings are synchronized to the Secondary Security Appliance.