cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
538
Views
5
Helpful
2
Replies

ASA 5520 HA Question

networker99
Level 1
Level 1

Here is the scenario,

We have 2x ASA 5520's in an HA pair (Active/Standby), we need to connect the outside interfaces to two other ASA 5520 also in an HA pair (Active/Standby).

My question is can the outside interfaces from the first pair of ASA's be connected directly to the outside interfaces of the other ASA, or do the outside interfaces of each local pair need to be able to talk to one another?

1 Accepted Solution

Accepted Solutions

Amit Rai
Level 1
Level 1

outside interfaces on the ASA need to poll each other in active/standby failover pair to be sure that they are up and running. if you connect them directly to another pair of the ASA outside interfaces they wont be able to talk to each other.

you should have a switch in between the ASA pairs that will make it work.

View solution in original post

2 Replies 2

Amit Rai
Level 1
Level 1

outside interfaces on the ASA need to poll each other in active/standby failover pair to be sure that they are up and running. if you connect them directly to another pair of the ASA outside interfaces they wont be able to talk to each other.

you should have a switch in between the ASA pairs that will make it work.

Use a switch and give two static routes one of primary next hop Asa with higher metric and the other static route must be for failover route....

Sent from Cisco Technical Support iPad App

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: