Recovery process for a PIX515e failure

Unanswered Question
Jan 11th, 2010
User Badges:

I had a PIX515e fail on me last week.  I had to jump through some hoops.  I had to get a replacement and then reload the config. When I reloaded the config a series of commands were omitted. NAT’s and Crypto’s mainly.  I think this was because I had an enhanced security key installed on it and the key was not initially installed.

Post I am trying to learn from this so in the event I have another failure I can recover quicker.  I think the recovery process should be:

1.       Install the correct IOS

2.       Install the correct license keys

3.       TFTP the config on to the PIX

Any comments would be appreciated.  Thanks.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Jon Marshall Mon, 01/11/2010 - 14:03
User Badges:
  • Super Blue, 32500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN

HMidkiff wrote:


I had a PIX515e fail on me last week.  I had to jump through some hoops.  I had to get a replacement and then reload the config. When I reloaded the config a series of commands were omitted. NAT’s and Crypto’s mainly.  I think this was because I had an enhanced security key installed on it and the key was not initially installed.

Post I am trying to learn from this so in the event I have another failure I can recover quicker.  I think the recovery process should be:

1.       Install the correct IOS

2.       Install the correct license keys

3.       TFTP the config on to the PIX

Any comments would be appreciated.  Thanks.


Presumably the crypto commands were because you were referring to 3DES for example. Not sure about the NAT commands.


Anyway, yes that looks like a good recovery process in the sense of making sure the correct key is there before trying to copy back the config. Have you thought about running an active/standby pair so if one fails it simply fails over to the other one ?


Jon

Actions

This Discussion