Turn NGFW Engines offline

In the offline state, engines stop processing traffic, but remain otherwise operational and ready to be turned online again.

Engines in the offline state can be turned on either automatically or by an administrator’s command, depending on the configuration.

CAUTION:
When you turn a node offline, it stops processing traffic. On Firewalls, Layer 2 Firewalls, and Master NGFW Engines, traffic is stopped unless other cluster nodes can take over. On Virtual Firewalls, Virtual IPS engines, and Virtual Layer 2 Firewalls, traffic is always stopped. On IPS engines, the behavior depends on the Failure Mode of the interfaces.

For more details about the product and how to configure features, click Help or press F1.

Steps

  1. Select Home.
  2. Browse to Engines, then expand the nodes of the engine that you want to turn offline.
  3. Right-click the node, then select Commands > Go Offline or Commands > Lock Offline.
  4. (Optional) In the Confirmation dialog box that opens, enter an Audit Comment.
    The comment is included in the audit log entry that is generated.
  5. Click Yes.
    The engine is turned offline shortly.