10-28-2009 01:11 AM - edited 03-11-2019 09:32 AM
I'm facing an issue with our ASA 5500. I have configured ASA in Active/Standby mode, but OSPF routes are not getting synchronized to standby unit. Is there any way to have OSPF routes sync between Active and standby unit in ASA 5500.
10-28-2009 02:47 AM
Hi
That's by design.
Please see Chapter "Dynamic Routing and Failover":
http://www.cisco.com/en/US/docs/security/asa/asa82/configuration/guide/route_overview.html#wp1097614
And also Table 32-6:
http://www.cisco.com/en/US/docs/security/asa/asa82/configuration/guide/ha_overview.html#wp1078941
10-28-2009 03:12 AM
Thank you for your help on my querry. But any other solution to have less outage. Currently I'm getting 11 timed outs if I ping to ASA active interface from any other OSPF routed network.
10-28-2009 03:30 AM
The only way to reduce the outage is to drop the idea of dynamic routing on the firewall and make it with static routing. On the network components you will have to configure HSRP to make your design fully HA.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide