In case of a failover, the following sequence of events occurs:
A PC user connects to the network, and the Primary Security Appliance creates a session for the user.
The Primary Security Appliance synchronizes with the Secondary Security Appliance. The Secondary now has all of the user’s session information.
The administrator restarts the Primary unit.
The Secondary unit detects the restart of the Primary unit and switches from Standby to Active.
The Secondary Security Appliance begins to send gratuitous ARP messages to the LAN and WAN switches using the same Virtual MAC address and IP address as the Primary Security Appliance. No routing updates are necessary for downstream or upstream network devices.
When the PC user attempts to access a Web page, the Secondary Security Appliance has all of the user’s session information and is able to continue the user’s session without interruption.