I have 2 PIX 535 firewalls that operate in a LAN-based failover scenario, in Active/Standby roles. The licenses running on them are Unrestricted, on the primary unit, and Failover Only-Active/Standby, on the secondary unit.
I tried to upgrade our dmz interface from a 100Mbps Ethernet card to a Gigabit Ethernet card. On inserting the GigE card, I moved the configuration from the Ethernet card to the GigE card, and then shut down the Ethernet card.
This was down on both PIX 535s.
Result was, we couldnt ping to either PIX, and from either PIX we couldnt ping to anywhere at all.
The interfaces showed they were "up,up", but on running "sh version" all interfaces were showing they were in "Normal" apart from the Inside intf which should "No Link (Waiting)"
We later rolled everything back and on inserting the blanking plate and powering up, everything returned to normal.
It turns out that what we thought was a blanking plate was the VAC+ card that we had removed.
How is removing it, and placing a GigE card instead, related to the results we were getting ?
Is the licensing anything to do with it as well.
Help, cant find answers anywhere