Good Day fellow techies
I am writing this article because I was very confused at the SCM tech writing of the Admin Guide, in regards to HA.
I REALLY tried to follow along with the steps, but could not understand. I think I am not the only one.
So, in basic terms, create your folder structure as you would for NGFW FWs, that you will be managing with SCM.
For me, I ignore putting anything in the highest (parent) folder of All Firewalls.
I created a folder (LIB Firewalls) in SCM, and put 2 FWs in that folder (FW-A and FW-B)
I created my variable and interfaces in the parent LIB Firewalls folder. (not shown here)
SCM documentation then states you should be able to configure your HA from your Configuration Scope, but there is something missing....
A better clarification is to go to the actual FW-DEVICE (FW-A and FW-B).
This is my "before" picture (I want to have eth1/3 and eth1/4 used for HA)
Notice that eth 3 and eth 4 show as Not Configured.
I clicked on ethernet1/3
When you add your interfaces (which will be only for HA in my example ), you are presented with the ADD Ethernet window,
(Viola!) this is where you see the mysterious Interface Type with a radio button of Default.
You do not need to do anything anything, just hit OK, and the interface is now created (in the device folder itself).
Do this for your 2nd interface...and......
(This is my "after". Notice that now eth 3 and eth 4 currently show Auto (for Link Status)
Now you can come back to Configuration Scope for the parent folder (LIB Firewalls) and finish your configuration for HA with variables or IPs or whatever you need.
Thanks to Rae A (at TAC), who was wonderful and helped me in about 3 minutes, after needing to lab this out herself 😛
