Setting the Administratively DOWN State on First Join

Description

You can configure the Chassis to set a newly installed SGM in a Security Group A logical group of Security Gateway Modules that provides Active/Active cluster functionality. A Security Group can contain one or more Security Gateway Modules. Security Groups work separately and independently from each other. To the production networks, a Security Group appears a single Security Gateway. to be in the administratively DOWN state automatically.

The administrator can confirm that the SGM is configured correctly before changing its state to UP.

Syntax

set chassis high-availability down_on_first_join {0 | 1}

• 0 - Do not enable the administratively DOWN state automatically on an SGM on first join

• 1 - Enable the administratively DOWN state automatically on an SGM first join

To add a new SGM to a Security Group in the administratively DOWN state

Step	Instructions
1	Connect to the command line on the Security Group.
2	Log in to Gaia Clish The name of the default command line shell in Check Point Gaia operating system. This is a restricted shell (role-based administration controls the number of commands available in the shell)..
3	Go to Gaia gClish The name of the global command line shell in Check Point Gaia operating system for Security Gateway Modules. Commands you run in this shell apply to all Security Gateway Module in the Security Group.: enter gclish and press Enter.
4	Enable the administratively DOWN state automatically on an SGM first join: set chassis high-availability down_on_first_join 1
5	Install a new SGM into the Chassis. See Adding or Replacing an SGM.
6	Add the new SGM to the Security Group: add smo security-group <SGM ID> See Security Group.
7	Make sure the SGM configuration is correct.
8	Change the SGM state to UP: g_clusterXL_admin -b <SGM IDs> up See Configuring the Cluster State (g_clusterXL_admin).