PIX 525 write standby issue

Unanswered Question
Feb 22nd, 2009

Hi

When I execute write standby command from primary PIX it is not copying one particular command line to the standby secondary PIX the command is "nat (inside) 0 access-list inside_nat0_acl"

even after rebooting secondary PIX I am having this issue. Other than that it is copying rest of the recent config changes.

Can anyone help me out how to fix this problem. Is it a known bug. If so , can I execute this command to the secondary PIX directly.

My IOS version is

Cisco PIX Security Appliance Software Version 7.2(1)

Cheers,

Siva

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
stanleyb Mon, 02/23/2009 - 20:11

Hey maybe..

Well, can you please post sh failover output? You might have some other issues.

Thanks

sivakumar.ks Mon, 02/23/2009 - 20:25

Here is the show failover output...

svhm-pix# sh failover

Failover On

Cable status: Normal

Failover unit Secondary

Failover LAN Interface: N/A - Serial-based failover enabled

Unit Poll frequency 6 seconds, holdtime 18 seconds

Interface Poll frequency 5 seconds, holdtime 25 seconds

Interface Policy 1

Monitored Interfaces 9 of 250 maximum

failover replication http

Version: Ours 7.2(1), Mate 7.2(1)

Last Failover at: 09:12:50 AEST Feb 22 2009

This host: Secondary - Active

Active time: 45544392 (sec)

Interface outside (0.0.0.0): Normal

Interface inside (0.0.0.0): Normal

Interface dmz-svhm (0.0.0.0): Link Down (Waiting)

Interface dmz-remote (0.0.0.0): Normal (Waiting)

Interface dmz-vpn-internal (0.0.0.0): Link Down (Waiting)

Interface dmz-vpn-external (0.0.0.0): Normal

Interface dmz-unimelb (0.0.0.0): Normal

Interface HealthSmart (0.0.0.0): Normal (Waiting)

Interface RVEEH-Network (0.0.0.0): Normal

Other host: Primary - Standby Ready

Active time: 426 (sec)

Interface outside (0.0.0.0): Normal

Interface inside (0.0.0.0): Normal

Interface dmz-svhm (0.0.0.0): Link Down (Waiting)

Interface dmz-remote (0.0.0.0): Normal (Waiting)

Interface dmz-vpn-internal (0.0.0.0): Link Down (Waiting)

Interface dmz-vpn-external (0.0.0.0): Normal

Interface dmz-unimelb (0.0.0.0): Normal

Interface HealthSmart (0.0.0.0): Normal (Waiting)

Interface RVEEH-Network (0.0.0.0): Normal

Stateful Failover Logical Update Statistics

Link : failover Ethernet7 (up)

Stateful Obj xmit xerr rcv rerr

General 4514681071 0 515801583 17442707

sys cmd 7558147 0 7558121 1

up time 0 0 0 0

RPC services 0 0 0 0

TCP conn 3166567303 0 441149517 11257278

UDP conn 1290642575 0 58911176 6185292

ARP tbl 49805761 0 8179969 136

Xlate_Timeout 0 0 0 0

VPN IKE upd 11222 0 1164 0

VPN IPSEC upd 96063 0 1636 0

VPN CTCP upd 0 0 0 0

VPN SDI upd 0 0 0 0

VPN DHCP upd 0 0 0 0

Logical Update Queue Information

Cur Max Total

Recv Q: 0 25 538002965

Xmit Q: 0 9 4640587425

svhm-pix#

Actions

This Discussion