About Central Management

Central Management is feature is used to manage the two HA nodes as a single device. This allows configuration changes to take place on the parent unit and be automatically synchronized with the child unit.

Note

Central Management only applies to the active/passive pair scenario. It cannot be used for single devices.

Central Management automatically synchronizes configuration information between the parent and child members every five minutes. Administrators can also manually trigger synchronization by clicking the "Synchronize Now" button on the title bar of the IWSVA Web console System Status page accessed through the parent node.

IWSVA supports two synchronization mechanisms:

Automatic synchronization—The parent node runs a scheduled task every five minutes to synchronize policies and configurations to the child node.
Manual synchronization—Users can force a synchronization by clicking Synchronize Now on the Administration → IWSVA Configuration → Summary page of the Web console of the parent node.

Users cannot perform a manual switchover if the configurations on the two nodes are not synchronized. If the configurations are not synchronized during a switchover attempt, IWSVA displays a warning message instructing you to manually synchronize the two members first.

For automatic failovers, the switchover happens immediately without a forced synchronization, and any configuration changes made since the last completed synchronization are lost.

Centrally Managed and Non-centrally Managed Features

CLUSTER-LEVEL -- Centrally Managed, settings only can be display and configuration on parent node, and then synchronized to child node.

INSTANCE-LEVEL -- Non-centrally Managed, settings may be difference for parent and child node, can be configuration them on parent or child node separately.

Some features may be managed centrally, while others require administrators to log into the Web console of the parent or child node.

Cluster-level Settings Available through the Parent Node

Instance-level Settings Available through the Parent or Child Node

Enable/disable HTTP(S)/FTP traffic (on System Status page)

Summary

System Dashboard /Virus/Malware/URL/Spyware/ Security Risk Report

All HTTP(s) policies and settings (under HTTP(S) section)

Includes HTTPS certifications

Reports (features and data)

Real-time reports
Scheduled reports data

All FTP policies and settings (under FTP section)

Logs (features and data)

Log query
Log deletion

Report Settings

Scheduled Report Settings
Report Templates
Configuration

Updates (manual update)

Log Settings

Syslog Configuration
Log Settings

Test database connection feature (under Administration → IWSVA Configuration → Database Connection)

Update Settings

Scheduled Update Settings
Connection Settings

Interface Configuration for data port and management port

Hostname
IP address and net mask
Port for data interface or management interface

Notification settings

Notification page
Threshold Alert Settings on Summary page
SMTP settings
SNMP settings under Administration → Network Configuration → SNMP Settings

TMCM Registration

Policy deployment settings (under Administration → Policy Deployment)

Replication Configuration

Quarantine Management (under Administration → Quarantine Management)

System patch

System Time

Update OS

Network Settings (Except Hostname, IP, net mask, and port)

Enable Ping for each interface
DNS
Default Gateway
Static Routes

Note

DHCP is removed in HA

Support

Web Console settings (under Administration → Network Configuration → Web Console)

Remote CLI settings (under AdministrationNetwork ConfigurationRemote CLI)

User accounts (under Administration)

Configuration backup/restore

Product License

/*<![CDATA[*/ $('#title').html($('meta[name=map-description]').attr('content')); /*]]>*/