Dear all experts,
Due to i'm implementing 2 CPPMs work together with cluster and Virtual IP (VIP) concept. First CPPM (CPPM1) is Publisher, second CPPM (CPPM2) is Subscriber. For working load will have around 200 NAD devices come to authenticate with CPPM. And CPPM will be authenticate with AD again. However, due to a lot of NAD devices, we want to separate NAD devices into 2 groups (100 NAD devices per one group). First NAD group will point to VIP that CPPM1 is primary, and second NAD group will point to VIP that CPPM2 is primary too. I have some questions that want to ask you:
1. Do we need to use both Mgmt and DATA port on both CPPMs. Or we can use only Mgmt port on each CPPM to support for above requiement. Due to will have some datas such accounting , authentication status or anything else that will be replicated between two CPPMs. So i'm not sure do we need to separate mgmt and data port for this design or not?
2. On CPPM, what ip address should be used for NAD device to point to? Physical ip address or virtual ip address?
3. When CPPM1 lost connectivity, CPPM2 will immediatly take place or not?
4. How often information will be replicated between both CPPMs? And supposing if CPPM1 lost connection, some of information such accounting might be losts right?