Active/Standby ASA question

Unanswered Question
Nov 9th, 2008


I have 2 ASA 5520's that were setup for my a few months ago by an engineer who has moved on.

From what he told me the configs of both ASA's are kept in sync, if the active ASA has a config change made then the standby ASA gets this update.

I have updated the Active ASA's ASDM bin file, will the Standbt ASA also get this update?

I had to tell the Active ASA to point to the new ASDM file, so the Standby ASA will get this config change, and if the ASDM.bin is not in the flash of the Standby ASA then it won't work.

The only way I have worked out how to access the Standby ASA is my making it active, is this right?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
husycisco Sun, 11/09/2008 - 12:43


One of the musts for failover is having identical IOS versions. So If you upgrade one device's image, failover is broken. Thats why IOS update does not get replicated.


jamesgonzo Sun, 11/09/2008 - 12:55

I understand this for the IOS, but what about different ASDM.bin versions? Surely the failover is ok if these are different?

husycisco Sun, 11/09/2008 - 13:57

As far as I remember, Offical documents do not include "identical ASDM images" in failover prerequisites. It should be OK.


This Discussion