Active/Active failover

Unanswered Question
Mar 12th, 2007

HI , forums

I have a doubt , I want to implement my network securities with Two ASA in Active/Active Failover , for that i have to configure multimode for security context , and in each security context there will be different ip with same subnet for Inside IP . so what will be the default gateway ip on my core switch.

Can any one tell me , i need help.

Regards

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
vitripat Mon, 03/12/2007 - 10:33

Hi Amit,

If your inside network for both the contexts is same, and you want to utilize both the contexts for outbound traffic, here is one example of route statements you can put on your core switch:

ip route 128.0.0.0 128.0.0.0 1

ip route 0.0.0.0 128.0.0.0 1

This way half of the traffic will be diverted through ctx-1 and other half through ctx-2. Pls note that this is *not* load-balancing. It just routes the traffic to one context for half of the available subnets and to other context for other half of the subnets.

Hope that helps.

Regards,

Vibhor.

amit.seth Mon, 03/12/2007 - 23:37

This is greate , i go the understand.

Thanks a lot Vibhor.

Regards

Actions

This Discussion