cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
537
Views
8
Helpful
3
Replies

ASA active/avtive failover and Load Balance ?

rico_hao40
Level 1
Level 1

I have four ASA5550 need to set up a cluster of failover also load balance, but I am confused with ASA active/active failover and Load balance? What?s the mean difference?

In active/active mode does that mean the traffic/session pick up the ASA randomly? If like this, I feel this is a sort of load balance already, right?

Looks like load balance does not maintain the session table on all the members, so that means if one member unit is dead all the session on it will be dropped and the users need rebuild the session? If things like this, it is not perfect, right? I do not want users feel any interrupt.

Need help,

Thanks

3 Replies 3

chidd
Level 1
Level 1

Active/Active can't load balance. Load Balancing depend on Layer 3 devices. ASA Active/Active simply pass traffic origninating from Layer 3 devices (Routers, Switch).

If one member unit is dead, all session will be replicate to Standby Context (will become Active) on Peer devices, thus users doesn't rebuild the sessions.

Thanks for reply.

If I only have one user group access my ASAs, so actually active/active mode is not necessary for me, active/standby is good enought?

Does that mean Active/active is only useful if I have multipul user group access my ASAs?

Thanks.

Correct active/standby is for you.

Active/active is a victory for cisco marketing and a hugely misleading moniker.

IMO it is best for service providers that need to give different customers their own firewalls for some reason.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: