Reg: Virtual ip address on the firewall

Answered Question
May 17th, 2010
User Badges:

Hi Guys,


Need to ask a question on pix. The following ip address is configured on the pix inside interface:


ip address 10.150.255.228 255.255.255.248 standby 10.150.255.229


The routing is configured as


route inside 10.0.0.0 255.0.0.0.0 10.150.255.227


The 10.150.255.227 looks hsrp address to me on the pix. Where can we configured this on the firewall and which command we can use to see this. Or is it assigned by the firewall automatically itself.


Tks

Correct Answer by Jennifer Halim about 6 years 11 months ago

10.150.255.227 is the next hop from the PIX inside interface. It is not an ip address on the PIX itself.


The PIX ip address is 10.150.255.228 for the inside Active ip address. There is no HSRP/standby ip address concept on PIX. The active ip address for inside interface is 10.150.255.228, and if the PIX fails over to the secondary failover pair, the ip address of 10.150.255.228 will also fail over. Whichever is the current Active firewall will have the ip address of 10.150.255.228 for the inside interface.


Hope that helps.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
Jennifer Halim Mon, 05/17/2010 - 19:42
User Badges:
  • Cisco Employee,

10.150.255.227 is the next hop from the PIX inside interface. It is not an ip address on the PIX itself.


The PIX ip address is 10.150.255.228 for the inside Active ip address. There is no HSRP/standby ip address concept on PIX. The active ip address for inside interface is 10.150.255.228, and if the PIX fails over to the secondary failover pair, the ip address of 10.150.255.228 will also fail over. Whichever is the current Active firewall will have the ip address of 10.150.255.228 for the inside interface.


Hope that helps.

Actions

This Discussion