Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
338
Views
1
Helpful
1
Replies

failover with subinterfaces in ASA 5520

arturo.reyna
Level 1
Level 1

‎11-13-2007 05:37 PM - edited ‎02-21-2020 01:47 AM

Hi:

I need more DMZs than physical interfaces in my ASA 5520, so I configure subinterfaces and vlans. When I applied the failover config I saw in the subinterfaces a "Not-monitored" message and failover doesn't work if the physical interface is down.

Interface DMZ27 (172.18.244.126): Normal (Not-Monitored)

Interface DMZ28 (168.165.13.94): Normal (Not-Monitored)

Interface DMZ29 (172.18.244.94): Normal (Not-Monitored)

I tried to use physical interface for monitoring but It doesn't pass traffic and vlan configuration is not allowed.

Any suggestion?

Thanks in advance.

0 Helpful
1 Reply 1

hadbou
Level 5
Level 5

‎11-19-2007 03:29 PM

you can have sub interfaces (dot1q tagged) on the ASA, and you can define one as a primary Internet connection, and another as a secondary.

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card