- Silver, 250 points or more
I am looking for some clarification on the behavior of an ASA Active/Standby failover pair when the units contain AIP modules. My experience with SSMs is mostly with the CSC module.
The documentation states that if the AIP module in the Active unit "fails", a failover will occur. However, the documentation does not clearly define what a failure is. Therefore, I am hoping some of you have experience with this and will be able to describe what happens in the following scenarios:
1. Will a failover occur when the module reloads after a system software upgrade?
2. Will a failover occur when the module reloads after a reimage of the module?
3. Will a failover occur after a signature definition update?
If the answer to any of the above questions is yes, what is the best way to prevent these failover events (i.e. temporarily disable failover? reload the module in the Standby unit first?)? Also, if you have any documentation which explains this, I would appreciate links to that as well.
Thanks in advance,