Skip to main content

Check out Interactive Visual Stories to gain hands-on experience with the SSE product features. Click here.

Skyhigh Security

About Cluster Configuration

You can set up and run multiple Secure Web Gateway appliances within your network as nodes that are connected in a common configuration. For this purpose, you can use the Central Management functions of Secure Web Gateway.

A configuration of appliances that are connected in this way is also referred to as a cluster. There are different types of clusters, depending on what you have configured for its appliances.

The following sections provide more information about the elements of a cluster and the different types you can configure here.

For the high-level steps you need to complete when configuring a cluster, see Workflow for Configuring a Cluster — Overview.

Elements of a Cluster

The folIowing are important elements of a cluster, which you will mainly deal with when working as its administrator.

  • Nodes Appliances that are connected to each other, which allows them to send and receive data for performing updates, backups, and other jobs

  • Node groups  Different types of groups that nodes are assigned to allowing different ways of sending and receiving data

  • Scheduled jobs  Jobs for sending and receiving data according to different time schedules

For more information about nodes, node groups, and scheduled jobs, see Nodes in a Cluster.

Cluster Types

You can configure the appliances that run as nodes in a cluster in different ways, which will result in different types of clusters. 

  • Central Management cluster  Using the Central Management functions of Secure Web Gateway, you can configure a Central Management cluster, where the following applies:

    • The appliances in this cluster communicate with each other by listening on a default port under the TCP protocol. The port number is 12346.

    • A CA certificate and a Private Key are generated on one appliance in this cluster and imported on the other appliances. 

     After configuring a cluster in this way, it does not yet provide the fail-over functions of a High Availability (HA) cluster. 

  • High Availability (HA) cluster To set up a cluster as High Availability (HA) cluster with fail-over functions, you must also configure the proxy functions of the appliances in this cluster to run them as proxies in Proxy HA mode.

    For more information, see About the Proxy HA Mode.


  • Was this article helpful?