368 Chapter10·HighAvailability Due to this issue with firewalls, specifically Check Point firewalls, Nokia no longer recommends VRRPv2 for customers who want to implement VRRP solutions. Using Monitored Circuits eliminates the asymmetric routing conditions. Configuring the Nokia VRRP Monitored Circuit We have covered how to implement Nokia VRRP from a theoretical standpoint. We will now demonstrate how to implement this solution using the Nokia CLI and Network Voyager inter- face using the same example network from the previous section. We will work with two Nokia firewalls that are configured with internal, external, and synchronization interfaces, respectively. The first thing we need to do is configure the Nokia firewalls individually. For example, network interfaces, DNS settings, routing, and so on. After this has been completed, we can configure VRRP and then add both Nokia firewalls to a Check Point gateway cluster object. Here is a list of steps to follow: 1. Configure all interfaces. 2. Synchronize the system time. 3. Add entries to the Host tables. 4. Configure VRRP settings. 5. Configure a Check Point gateway cluster. Configuring All Interfaces Using Tables 10.3 and 10.4, we configure our interfaces as shown in Figures 10.5 and 10.6. Figure 10.5 The Nokia A Interface Configuration