Service Data and Configuration Backup

This section describes the configuration and service data backup of cluster members after a cluster is created.

After a cluster is created, the management master device backs up cluster-supported configurations to all cluster members in real time, ensuring cluster configuration consistency. Each business master device backs up service data to backup members in the business group (the cluster backup node-num command specifies the number of backup members).

Table 1 lists the configuration backup of features supported by the cluster. The features that are not listed in the table cannot be used in the cluster.

**Table 1** Cluster Configuration and Service Data Backup
Feature	Configuration Backup	Service Backup	Remarks
ASPF/ALG	Yes	Yes	-
Intelligent uplink selection/DNS transparent proxy/PBR	No	N/A	-
Authentication server (AD/LDAP)	Yes	N/A	-
Health check/Security policy/Authentication policy/AAA	Yes	N/A	-
Proxy policy/SSL-Encrypted traffic detection /Mail proxy/Traffic policy	Yes	No	-
NAT Server/PAT	Yes	Yes	-
Port mapping/Address/Service/Policy group/Application/Time range/Security zone/Label	Yes	N/A	-
Domain group/ACL	Yes	Yes	-
Information center/Logs	Yes	N/A	The following commands cannot be backed up: info-center loghost address info-center loghost source firewall log host firewall log source firewall log session log-type firewall log session log-type binary content smart-append firewall log syslog header firewall log netflow header firewall log syslog content format firewall log nat-nopat enable firewall log packet-discard enable firewall log packet-discard session-log send-to-public log-type nat firewall log im enable firewall log session url-log enable firewall log session half-connection enable firewall log password firewall log session log-type binary version session-log template prefix-characters expression separate expression message
L2TP/Routing	No	No	-
Virtual system	Yes	N/A	-
SNMP	No	N/A	-
IPSec	Yes	Yes	The following commands cannot be backed up: route inject nexthop
SSL VPN	Yes	No	-
User management	Yes	Yes	Some user management data is stored in the configuration file, and some user management data is stored in the database. The data stored in the configuration file can be backed up in real time or in batches. The data (user, user group, and security group data) stored in the database can be backed up only in real time.
URL filtering/IPS/AV	Yes	No	-
Anti-DDoS	Yes	N/A	-
GRE/VRRP	No	N/A	-
SLB	Yes	Yes	SLB L7 sessions from a client to a real server are not backed up.
DHCP Server	Yes	N/A	The following commands cannot be backed up: dhcp enable dhcp select interface dhcp server lease unlimited dhcp server excluded-ip-address dhcp server ip-range dhcp server static-bind dhcp server dns-list dhcp server nbns-list dhcp server option

For features that are not backed up, the cluster members are configured independently.
By default, for features that are backed up, configure them on the management master device. After the configurations are complete, the system synchronizes the configurations to other member devices in real time. After the commands in cluster standby config enable are run on the management master device, these commands can also be configured on the management backup device. After the configurations are complete, the system also synchronizes the configurations to other member devices in real time.
Reconnection occurs for features that do not support service backup during failovers. This may affect services for a short period. Features whose service data can be backed up support smooth switchovers during failovers.
In most cases, display, reset, and debugging commands cannot be backed up.