Configuring Virtual System Load Sharing

Introduction

VSXClosed Virtual System Extension. Check Point virtual networking solution, hosted on a computer or cluster with virtual abstractions of Check Point Security Gateways and other network devices. These Virtual Devices provide the same functionality as their physical counterparts. Clusters can efficiently balance network traffic load by distributing active Virtual Systems between VSX ClusterClosed Two or more Security Gateways that work together in a redundant configuration - High Availability, or Load Sharing. Members.

This capability is known as Virtual System Load Sharing (VSLS).

Virtual System Load SharingClosed VSX Cluster technology that assigns Virtual System traffic to different Active Cluster Members. Acronym: VSLS. is a cluster technology that assigns traffic for Virtual Systems to different Active VSX Cluster Members, which has these benefits:

  • Capacity: VSLS leverages the cluster machines to handle greater network volume by efficiently dividing the load.

  • Redundancy: VSLS gives full redundancy by maintaining connectivity for all Virtual Systems even when individual VSX Cluster Members fail.

  • Scalability: VSLS provides linear scalability for throughput and session rate.

  • Cost Effectiveness: A VSLS cluster uses standard network switches to get cost effective Load Sharing.

  • Ease of Configuration: Virtual Systems are automatically distributed between all the VSX Cluster Members - no special configuration is required.

  • Priority Designation: Mission-critical Virtual Systems can be separated from the other Virtual Systems to utilize better bandwidth and resources.

  • System Scalability: Every VSX Cluster MemberClosed Security Gateway that is part of a cluster. added to the cluster increases the overall system capacity and redundancy.

Note - These Virtual Devices are not supported when the Per Virtual SystemClosed Virtual Device on a VSX Gateway or VSX Cluster Member that implements the functionality of a Security Gateway. Acronym: VS. state is enabled:

  • Virtual Routers

  • Virtual Switches without physical or VLAN interfaces

In an example deployment scenario with three VSX Cluster Members, each with three Virtual Systems: an equalized Load Sharing deployment might have one Active Virtual System on each VSX Cluster Member.

Item

Description

 

Item

Description

1

VSX Cluster Member 1

 

8

Virtual System 2 is Backup

2

VSX Cluster Member 2

 

9

Virtual System 3 is Active

3

VSX Cluster Member 3

 

10

Virtual System 1 is Backup

4

Virtual System 1 is Active

 

11

Virtual System 2 is Active

5

Virtual System 2 is Standby

 

12

Virtual System 3 is Standby

6

Virtual System 3 is Backup

 

Sync Network

7

Virtual System 1 is Standby

 

 

 

A different member hosts the active peer for each Virtual System. This distribution spreads the load equally between the VSX Cluster Members.

When you create a Virtual System, VSX automatically assigns Standby and Backup states to the applicable peers and distributes them between the other VSX Cluster Members.

In the event that a VSX Cluster Member fails, VSLS directs traffic destined to affected Virtual Systems to their fully synchronized Standby peers, which then become Active. At the same time, a Backup Virtual System switches to Standby, and synchronizes with the newly Active Virtual System.

In the event that an individual active Virtual System fails, it immediately fails over to its Standby peer and one of its Backup peers becomes the Standby, synchronizing with the newly Active peer.

VSLS lets administrators manually assign Virtual Systems to specified VSX Cluster Members, or lets VSX automatically assign Virtual System traffic dynamically.

Requirements

All Virtual Systems in all VSX Cluster Members must have direct connectivity with each other.

Connectivity must be accomplished using switches or VLAN connections.

This is required for detecting and assigning Virtual System states.

Virtual System Priority

Virtual System priority refers to a preference regarding which VSX Cluster Member hosts a Virtual System's Active, Standby, and Backup states.

This preference is expressed as an integer value.

Priority

Definition

0

Highest priority, indicating the cluster designated to host the Virtual System Active state.

1

Second highest priority, indicating the member designated to host the Virtual System Standby state.

> 1

Lower priorities, indicating the VSX Cluster Members designated to host a Virtual System Backup state.

The VSX Cluster Member assigned priority 2 is the first to switch the Virtual System to the Standby state in the event of a failure of either the Active or Standby Virtual System.

A VSX Cluster Member assigned priority 3 is the next in line to come online in the event of another failure.

You can change the priority designation with the "vsx_util vsls" command on the Management ServerClosed Check Point Single-Domain Security Management Server or a Multi-Domain Security Management Server..

Virtual System Weight

Because not all Virtual Systems are equal in terms of traffic and load, VSLS allows you to assign "weights" to individual Virtual Systems.

The weight of a Virtual System affects the dispersal pattern of other Virtual Systems across VSX Cluster Members.

When you assign a heavier weight to a Virtual System gives it a larger share of resources on a specific VSX Cluster Member, and disperses the other Virtual Systems to other VSX Cluster Members.

By default, all Virtual Systems are assigned an equal weight factor of 10.

You can change the weight factor with the "vsx_util vsls" command on the Management Server.

Virtual System States

VSLS adds a Backup state to the existing Active and Standby states.

The Backup state contains the latest configuration settings for each Virtual System, but does not receive state table synchronization.

The figure below illustrates the relationship between Virtual System states.

Item

Description

1

VSX Cluster with 3 Cluster Members, each running 3 Virtual Systems (2, 3, and 4)

2

Virtual System 1 on VSX Cluster Member 1 is Active

3

Virtual System 1 on VSX Cluster Member 2 is Standby

4

Virtual System 1 on VSX Cluster Member 3 is Backup

5

Policy updates only

6

State tables are synchronized

Each Virtual System peer in a VSLS cluster is replicated on all VSX Cluster Members, and each copy exists in a different state.

The Active and Standby states are synchronized, so that the Standby peer can immediately become Active in the event of a failure of the Active Virtual System or VSX Cluster Member.

When this happens, the Backup peer becomes the Standby, and immediately synchronizes with the new Active Virtual System.

VSLS reduces the load on the synchronization network by not synchronizing the Backup Virtual System state tables with the Active Virtual System until a failover occurs.

Normalized VSLS Deployment Scenario

For example, you can have three VSX Cluster Members, each with three Virtual Systems.

In this configuration, an equalized Load Sharing deployment could have one Active Virtual System on each VSX Cluster Member.

Item

Description

 

Item

Description

1

VSX Cluster Member 1

 

8

Virtual System 2 is Backup

2

VSX Cluster Member 2

 

9

Virtual System 3 is Active

3

VSX Cluster Member 3

 

10

Virtual System 1 is Backup

4

Virtual System 1 is Active

 

11

Virtual System 2 is Active

5

Virtual System 2 is Standby

 

12

Virtual System 3 is Standby

6

Virtual System 3 is Backup

 

Sync Network

7

Virtual System 1 is Standby

 

 

 

A different VSX Cluster Member can host the Active state of each Virtual System.

This distribution of Virtual Systems spreads the load between the VSX Cluster Members.

When a Virtual System is created, the system automatically creates Standby and Backup states and distributes them between the other VSX Cluster Members.

VSX Cluster Member Failure Scenario

In the event that a member fails or experiences a connectivity problem, VSLS detects the problem and routes traffic for the affected Virtual Systems to their corresponding Standby Virtual Systems.

Standby Virtual Systems, which are fully synchronized with their active peers, change immediately to the Active state and preserve active connections.

At the same time, the backup Virtual Systems switch to Standby, and synchronize fully with the newly active Virtual Systems.

Item

Description

 

Item

Description

1

VSX Cluster Member 1

 

8

Virtual System 2 is Standby

2

VSX Cluster Member 2

 

9

Virtual System 3 is Active

3

VSX Cluster Member 3

 

10

Virtual System 1 is Standby

4

Virtual System 1 is Down

 

11

Virtual System 2 is Active

5

Virtual System 2 is Down

 

12

Virtual System 3 is Standby

6

Virtual System 3 is Down

 

Sync Network

7

Virtual System 1 is Active

 

Network Traffic

In this scenario, VSX Cluster Member 1 fails and its Active and Standby Virtual Systems fail over to VSX Cluster Member 2 and VSX Cluster Member 3.

The Active Virtual System (VS1) moves to VSX Cluster Member 2 and directs all VS1 traffic itself.

Its Backup peer on VSX Cluster Member 3 synchronizes with the new Active Virtual System and becomes the Standby.

VS2 on VSX Cluster Member 2 becomes the Standby and synchronizes with the Active peer on VSX Cluster Member 3.

For VS3, the Active and Standby peers remain the same.

Virtual System Failure Scenario

In a failure scenario where an active Virtual System fails on one member, but the Standby and Backup Virtual Systems remain up: the Active Virtual System fails over to its Standby peer, and its Backup becomes the Standby.

The new Standby synchronizes with the new Active member.

Item

Description

 

Item

Description

1

Member 1

 

8

VS 2 Backup

2

Member 2

 

9

VS 3 Active

3

Member 3

 

10

VS 1 Standby

4

VS 1 Down

 

11

VS 2 Active

5

VS 2 Standby

 

12

VS 3 Standby

6

VS 3 Backup

 

Sync Network

7

VS 1 Active

 

 

 

All other Virtual Systems continue to function as usual, and no failover occurs.

Failure Recovery

When the failed VSX Cluster Member or Virtual System comes back online, the system returns to its original Load Sharing configuration.

Configuring a VSX Cluster in VSLS Mode

  1. See the R81 Installation and Upgrade Guide - Chapter Installing a ClusterXL, VSX Cluster, VRRP Cluster - Section Installing a VSX Cluster.

  2. The Per Virtual System State mode enables active Virtual Systems to be placed on different VSX Cluster Members, and for Virtual System-specific failover. This setting is mandatory for VSLS.

    On each VSX Cluster Member:

    1. Connect to the command line.

    2. Log in to the Expert mode.

    3. Run:

      cpconfig

    4. Select:

      Enable Check Point Per Virtual System State

    5. When the question appears:

      Would you like to enable Per Virtual System state?

      Enter y to confirm.

    6. Reboot the VSX Cluster Member.

    1. Connect with SmartConsoleClosed Check Point GUI application used to manage a Check Point environment - configure Security Policies, configure devices, monitor products and events, install updates, and so on. to the Security Management ServerClosed Dedicated Check Point server that runs Check Point software to manage the objects and policies in a Check Point environment within a single management Domain. Synonym: Single-Domain Security Management Server. or Main Domain Management Server that manages the VSX Cluster.

    2. From the navigation panel, click Gateways & Servers.

    3. At the top, click Objects menu > More object types > Network Object > Gateways and Servers > VSX > New Cluster.

      The VSX Cluster Wizard > General Properties opens.

    4. Create and configure the new VSX Cluster.

      See Working with VSX Clusters.

      1. On the General Properties page, from VSX Cluster Platform, select ClusterXLVirtual System Load Sharing.

      2. Complete the VSX Cluster Wizard.

  4. See:

  5. Use the "vsx_util vsls" command (see vsx_util vsls) on the Management Server to do different Virtual System Load Sharing configuration tasks:

    • Show the current VSLS configuration

    • Distribute Virtual Systems equally between VSX Cluster Members

    • Set all Virtual Systems as Active on one VSX Cluster Member

    • Manually define the priority and weight for individual Virtual Systems

    • Toggle VSLS mode between Active Up and Primary Up

    • Import VSLS configuration from CSV text files

    • Export VSLS configuration to CSV text files

    Procedure:

    1. Connect to the command line on the Management Server.

    2. Log in to the Expert mode.

    3. Run:

      vsx_util vsls

    4. Enter the IP address of the Security Management Server or Domain Management Server.

    5. Enter the Management Server administrator user name and password.

    6. Select the applicable option from the VSLS menu.

      [Expert@MGMT:0]# vsx_util vsls
Enter Security Management Server/main Domain Management Server IP address (Hit 'ENTER' for 'localhost'): 172.16.16.240
Enter Administrator Name: admin
Enter Administrator Password: ****
 
Select VSX gateway/cluster object name:
1)    VSX_Cluster_1
2)    VSX_Cluster_2
3)    VSX_GW_1
4)    VSX_GW_2
Select: 1
 
 
VS Load Sharing - Menu
________________________________
1. Display current VS Load sharing configuration
2. Distribute all Virtual Systems so that each cluster member is equally loaded
3. Set all VSes active on one member
4. Manually set priority and weight
5. Toggle VSLS mode between Active Up and Primary Up
6. Import configuration from a file
7. Export configuration to a file
8. Exit
 
Enter redistribution option (1-8) [1]:

Viewing VSLS Status

To view the current VSLS status and Virtual System distribution between VSX Cluster Members, select Display current VS Load Sharing configuration from the VSLS menu.

----+---------+-----------+-----------+-----------+--------+
VSID| VS name | gw150     | gw151     | gw152     | Weight |
----+---------+-----------+-----------+-----------+--------+
 2  | vs1     | 0         | 1         | 2         | 10     |
 3  | vs2     | 2         | 0         | 1         | 10     |
 4  | vs3     | 1         | 2         | 0         | 10     |
 5  | vs5     | 0         | 2         | 1         | 10     |
  6 | vs4     | 1         | 0         | 2         | 10     |
----+---------+-----------+-----------+-----------+--------+
 Total weight | 20        | 20        | 10        | 50     |
----+---------+-----------+-----------+-----------+--------+
 
Legend:
0 - Highest priority
1 - Next priority
2 - Lowest priority

Virtual System priority refers to a preference regarding which VSX Cluster Member hosts a Virtual System's Active, Standby, and Backup states.

This preference is expressed as an integer value.

Priority

Definition

0

Highest priority, indicating the VSX Cluster Member designated to host the Virtual SystemActive state.

1

Second highest priority, indicating the VSX Cluster Member designated to host the Virtual SystemStandby state.

> 1

Lower priorities, indicating VSX Cluster Members designated to host a Virtual System's Backup state.

The VSX Cluster Member assigned priority 2 will be the first to switch the Virtual System to the Standby state in the event of a failure of either the Active or Standby Virtual System.

A VSX Cluster Member assigned priority 3 would be the next in line to come online in the event of another failure.

Each Virtual System is assigned a weight factor, which determine its traffic volume relative to the total traffic volume (the sum of all weight factors) on a given VSX Cluster Member.

VSX uses the weight factor to determine the most efficient distribution of Virtual Systems between VSX Cluster Members.

System resource allocation is not affected by the weight factor, and VSX does not take weight into consideration for any other purpose.

By default, all Virtual Systems are assigned an equal weight factor of 10.

Distributing Virtual Systems Between VSX Cluster Members

The primary advantage of VSLS is that it distributes Active, Standby and Backup Virtual Systems between VSX Cluster Members to maximize throughput and user response time.

You can distribute Virtual Systems in one of these ways:

This lets you automatically distribute Active Virtual Systems between VSX Cluster Members, so that all VSX Cluster Members are equally loaded, based on assigned weights and existing or default priority definitions.

  1. From the VSLS menu (see vsx_util vsls), select Distribute all Virtual Systems so that each cluster member is equally loaded.

  2. At the "Save & apply configuration?" prompt, enter y to continue.

The process update process may take several minutes or longer to complete, depending on the quantity of Virtual Systems and VSX Cluster Members.

  1. From the VSLS menu (see vsx_util vsls), select Set all VSs active on one member.

  2. When prompted, enter the number corresponding to the VSX Cluster Member designated as the Primary member.

  3. When prompted, enter the number corresponding to the VSX Cluster Member designated as the Standby member.

    All other VSX Cluster Members are designated as Backup members.

  4. At the "Save & apply configuration?" prompt, enter y to continue.

The process update process may take several minutes or longer to complete, depending on the quantity of Virtual Systems and VSX Cluster Members.

Note - After you save changes, the update requires time (several minutes or longer), depending on the quantity of Virtual Systems and VSX Cluster Members.

  1. From the VSLS menu (see vsx_util vsls), select Manually set priority and weight.

  2. Scroll through each Virtual System. Enter a.

  3. For each Virtual System, enter a weight value and press Enter.

    If you do not enter a weight value for a Virtual System, the assigned weight is not changed.

    Only Virtual Systems with a new weight value are updated.

    To stop entering weight values, enter s.

  4. At the "Save & apply configuration" prompt, enter y to continue.

  1. From the VSLS menu (see vsx_util vsls), select Manually set priority and weight.

  2. Enter m.

  3. At the "Would you like to change the Virtual System's priority list?" prompt, enter y to continue.

  4. Enter the number of the VSX Cluster Member to get the highest priority.

  5. Enter the number of the VSX Cluster Member to get the next highest priority.

  6. Continue until all VSX Cluster Members have a priority.

  7. At the "Would you like to change the Virtual System's weight?" prompt, enter y to continue.

  8. Enter the new weight value. A valid value is an integer between 1 and 100.

  9. At the "Do you wish to configure another Virtual System?" prompt, enter y to configure a different Virtual System, or enter n to continue.

  10. At the "Save & apply configuration?" prompt, enter y to continue.

Exporting and Importing VSLS Configuration

When working with large scale VSLS deployments consisting of many Virtual Systems, multiple VSX Cluster Members, using the vsx_util command on the Management Server to do configuration tasks can be quite time consuming.

To let administrators to efficiently configure such deployments, VSX supports uploading VSLS configuration files containing configuration information for all Virtual Systems directly to Management Servers and VSX Cluster Members.

This capability offers the following advantages:

  • Fast VSLS configuration of large-scale deployments with many Virtual Systems and VSX Cluster Members.

  • Efficient migration and scalability for complex deployments.

  • External backup of VSLS configurations.

VSLS configuration files are CSV files that are editable using a text editor or other applications, such as Microsoft Excel. You can use the configuration file to change quickly the weight and VSX Cluster Member priority for each Virtual Systems in the list.

Note - You cannot use the VSLS configuration file to add or remove VSX Cluster Members. You must use the applicable vsx_util commands to do this.

You can use the VSLS configuration file to change member priorities for Virtual Systems after adding or removing a VSX Cluster Member.

The VSLS configuration file is a comma separated value (CSV) text file that contains configuration settings for all Virtual Systems controlled by a Management Server.

All lines preceded by the # symbol are comments and are not imported into the management database.

# Check PointVSX - VS Load Sharing configuration file
#
# Administrator : aa
# SmartCenter/Main Domain Management Server : 192.168.50.160
# Generated on : Thu Jul 23 13:08:42 2009
#
#
#
# VSID, Weight, Active member, Standby member, Backup member #1
# Virtual System name: vs1
2,10,gw150,gw151,gw152
 
# Virtual System name: vs2
3,10,gw151,gw152,gw150
 
# Virtual System name: vs3
4,10,gw152,gw150,gw151
 
# Virtual System name: vs4
6,10,gw151,gw150,gw152
 
# Virtual System name: vs5
5,10,gw150,gw152,gw151

The configuration file contains one line for each Virtual System, consisting of the following data as shown below:

Each line contains the VSID, the weight assigned the Virtual System, one primary VSX Cluster Member, and one Standby VSX Cluster Member.

Backup VSX Cluster Members are listed after the Standby VSX Cluster Member.

The most common way to use VSLS configuration files is to initially define your cluster environment and Virtual Systems using SmartConsole.

  1. From the VSLS menu (see vsx_util vsls), select Export configuration to a file.

  2. Enter the absolute path to the file.

    For example:

    /home/admin/MyConfiguration

You can insert the following commands in the VSLS Configuration file to show audit trail information while validating and processing data.

Each of the commands is like a toggle, whereby the first occurrence of a command enables the action and the next occurrence disables it.

These options let you debug efficiently very long configuration files by displaying or logging only suspicious sections of the data.

Command

Action

!comments

Sequentially displays comment lines (those preceded with the '#' character) contained in the configuration file.

You can insert comments into the configuration file to indicate which Virtual Systems are currently processed, or to provide status information as the parser processes the data.

!verbose

Shows whether or not each data line has been successfully verified and the configuration parameters for each Virtual System.

!log

Saves !comments and !verbose information in the vsx_util.log file.

  1. From the VSLS menu (see vsx_util vsls), select Import configuration from a file.

  2. Enter the absolute path to the file.

    For example:

    /home/admin/MyConfiguration

  3. At the "Save & apply configuration?" prompt, enter y to continue.

During the import process, the parser reads the configuration file and attempts to validate the contents.

Errors are displayed on the screen together with the offending line number.

If either the !comments or !verbose processing options are enabled, the applicable information appears on the screen.

The process update process may take several minutes or longer to complete, depending on the quantity of Virtual Systems, Domain Management Servers, and VSX Cluster Members.

Virtual Routers in VSLS Mode

From R81, you can configure Virtual Routers in VSLS mode.

Description of Virtual Router Groups

To ensure traffic flow during a VSX Cluster failover, a Virtual RouterClosed Virtual Device on a VSX Gateway or VSX Cluster Member that functions as a physical router. Acronym: VR. and all Virtual Systems that connect to it belong to the same Virtual Router Group.

The Virtual Router in a Virtual Router Group manages all Virtual Systems in that Virtual Router Group. It makes sure all Virtual Systems are Active on the same VSX Cluster Member as the Virtual Router.

If at least one Virtual System or the Virtual Router in the affected Virtual Router Group fail, all Virtual Systems and the Virtual Router in the same Virtual Router Group fail over from the affected VSX Cluster Member to another VSX Cluster Member.

Important:

  • A Management Server creates the corresponding Virtual Router Group automatically when you create a Virtual Router object.

  • You can connect a Virtual System to only one Virtual Router.

  • The cluster state of all members of the same Virtual Router Group is Active on the same VSX Cluster Member.

  • Changes in the cluster state of Virtual Systems in a Virtual Router Group take effect only after you install the Access Control Policy on the applicable Virtual Systems.

  • Connecting an existing Virtual System to an existing Virtual Router:

    If the cluster state of an existing Virtual System is Active on one VSX Cluster Member, and the cluster state of an existing Virtual Router is Active on another VSX Cluster Member, then after you connect the Virtual System to this Virtual Router and install the Access Control Policy on the Virtual System, it becomes Active on the same VSX Cluster Member as the Virtual Router.

Viewing the existing Virtual Router Groups on a Management Server

  1. Connect to the command line on the Management Server that manages the VSX Cluster object.

  2. Log in to the Expert mode.

  3. Go to the configuration menu for Virtual System Load Sharing:

    vsx_util vsls

  4. From the VSLS menu, select Display current VS Load sharing configuration.

    In the column "VS name":

    • After the name of the Virtual Router, in the brackets you see the number of the Virtual Router Group and the letter M (denotes the manager of this Virtual Router Group).

    • After the name of the Virtual System, in the brackets you see the number of the Virtual Router Group, to which this Virtual System belongs.

    Every Virtual Router Group gets a cardinal number:

    1. For the first Virtual Router you create, the Management Server creates a Virtual Router Group #1.

    2. For the second Virtual Router you create, the Management Server creates a Virtual Router Group #2.

    3. And so on.

    sss

    [Expert@MGMT:0]# vsx_util vsls
Enter Security Management Server/main Domain Management Server IP address (Hit 'ENTER' for 'localhost'): 172.16.16.240
Enter Administrator Name: admin
Enter Administrator Password:
 
Select VSX gateway/cluster object name:
  1)    VSX_Cluster_1
  2)    VSX_Cluster_2
  3)    VSX_GW_1
  4)    VSX_GW_2
Select: 1
 
 
VS Load Sharing - Menu
________________________________
1. Display current VS Load sharing configuration
2. Distribute all Virtual Systems so that each cluster member is equally loaded
3. Set all VSes active on one member
4. Manually set priority and weight
5. Toggle VSLS mode between Active Up and Primary Up
6. Import configuration from a file
7. Export configuration to a file
8. Exit
 
Enter redistribution option (1-8) [1]: 1
 
VSLS is in Primary Up mode.
 
----+----------------+----------+----------+--------+
VSID| VS name        | Member_1 | Member_2 | Weight |
----+----------------+----------+----------+--------+
  1 | VR (1M)        | 0        | 1        | 10     |
  2 | vs1 (1)        | 0        | 1        | 0      |
  3 | vs2            | 1        | 0        | 10     |
  4 | vs3            | 0        | 1        | 10     |
  5 | vs4            | 0        | 1        | 10     |
----+----------------+----------+----------+--------+
 Total weight        | 20       | 20       | 40     |
----+----------------+----------+----------+--------+
 
Legend:
0 - Highest priority
1 - Lowest priority
 
Note: Virtual devices that are on the same group are marked with the same number '(group #)'.
Virtual device that is marked with (<group #> L) is defined as manager of <group #>.
Only a group manager has weight greater than 0, which is the sum of weights of all group members.
Virtual devices, that are not part of any group, show their own weight.

  5. Exit from the menu.

Viewing the existing Virtual Router Groups on VSX Cluster Members

  1. Connect to the command line on the VSX Cluster Member.

  2. Log in to the Expert mode.

  3. Run:

    cphaprob show_vsls_groups

Notes:

  • You can run this command in any VSX context.

  • If you run this command in the context of a Virtual Router, you can see the names and VSID of Virtual Systems that belong to the corresponding Virtual Router Group.

    Example - Context of the Virtual Router "VR":

    [Expert@VSX_Member_1:1]# cphaprob show_vsls_groups
VR vsid 1 is a VSLS group manager.
Group members are:
vs1 vsid 2
vs2 vsid 3

  • If you run this command in the context of a Virtual System that is connected to a Virtual Router, you can see the VSID of the Virtual Router that manages the corresponding Virtual Router Group.

    Example - Context of the Virtual System "VS1":

    [Expert@VSX_Member_1:2]# cphaprob show_vsls_groups
vs1 vsid 2 is a VSLS group member.
VSLS Group manager is VR vsid 1

VSLS Weights in Virtual Router Groups

When Virtual Systems are connected to a Virtual Router, the weight of the Virtual Router in the corresponding Virtual Router Group is the total sum of all weights of all Virtual Systems.

For Virtual Systems that belong to Virtual Router Groups, outputs of different commands show their weight of as 0 (zero).

For Virtual Systems that do not belong to Virtual Router Groups, outputs of different commands show their real weight (by default, all Virtual Systems are assigned an equal weight factor of 10.).

For example, if a Virtual System "vs1" with the wight 20 and a Virtual System "vs2" with the wight 30 are connected to a Virtual Router "vr", then outputs of different commands show the weight of the Virtual Router as 50.

Note - The total sum of all weights of all Virtual Systems in the same Virtual Router Group cannot be more greater than 100.

Distributing Virtual Systems that belong to a Virtual Router Group between VSX Cluster Members

If it is necessary to distribute manually Virtual Systems between VSX Cluster Members, and these Virtual Systems are connected to a Virtual Router, you must distribute the corresponding Virtual Router between VSX Cluster Members (assign the priority and weight only to this Virtual Router). The Management Server automatically distributes all Virtual Systems in the corresponding Virtual Router Group.

For more information, see Distributing Virtual Systems Between VSX Cluster Members.