How to achieve redundancy from ASA to Cat 6500 switch

Unanswered Question
Oct 3rd, 2008
User Badges:


I have placed ASA as the internet edge devices,the INSIDE of which connects to Cat 6500 switch. If I were to have redundant links from the ASA how can it be achieved. Would I need to define a second INSIDE etc on ASA and connect that to the second Cat 6500 switch. No idea?


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading. Fri, 10/03/2008 - 03:54
User Badges:
  • Silver, 250 points or more


You can implement failover with two ASA (on firewall side) and implement HSRP on Catalyst side.

Look at Failover Redundancy:

Configuring HSRP:

I hope this helps.

Best regards.


new_networker Fri, 10/03/2008 - 04:46
User Badges:

Ok. But will HSRP be of any benefit if Cat 6500 (1) fails because in this case ASA failover will occur and it will anyways talk to the second Cat 6500.

Is it at all recommended to physically connect an ASA to two Cat 6500 switches. I mean that first ASA can continue communicating with the second Cat 6500 without failing over the second ASA due to first Cat 6500 failure.


This Discussion