cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
322
Views
0
Helpful
4
Replies

Interface failover on single ASA

mikedelafield
Level 1
Level 1

We have 1 ASA firewall and 2 LAN switches. Can it be configured that the ASA connects in to both switches and in the event of switch failure connection to the firewall is still possible?

We have 4 interfaces on the ASA.

thanks

4 Replies 4

royalblues
Level 10
Level 10

You cannot do this as the ASA will not allow to have the same IP subnet on 2 of its interfaces

If you need redundancy, then you require one more ASA box which can be configured for failover

Narayan

originally I didn't think it was possible

but i found a document relating to Redundant Interfaces.

http://www.cisco.com/en/US/docs/security/asa/asa80/configuration/guide/intrface.html#wp1045838

has anyone used this succesfully?

i know its a strange configuration, but it is a requirement we have on 1 of our sites

originally I didn't think it was possible

but i found a document relating to Redundant Interfaces.

http://www.cisco.com/en/US/docs/security/asa/asa80/configuration/guide/intrface.html#wp1045838

has anyone used this succesfully?

i know its a strange configuration, but it is a requirement we have on 1 of our sites

Mike,

That requires V8 code, which is still very early. I don't know that i'd be using it on a production system just yet.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: