Interface failover on single ASA

Unanswered Question
Mar 10th, 2008

We have 1 ASA firewall and 2 LAN switches. Can it be configured that the ASA connects in to both switches and in the event of switch failure connection to the firewall is still possible?

We have 4 interfaces on the ASA.


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
royalblues Mon, 03/10/2008 - 03:45

You cannot do this as the ASA will not allow to have the same IP subnet on 2 of its interfaces

If you need redundancy, then you require one more ASA box which can be configured for failover


chris.rosan Mon, 03/10/2008 - 20:17


That requires V8 code, which is still very early. I don't know that i'd be using it on a production system just yet.


This Discussion