failover configuration query

Unanswered Question
May 5th, 2012

hi ,

I have a cisco asa 5510 with security plus license in Live enviroment .

I need to add a secondary firewall .

I was planning to do in active /standby mode for failover .

But i have a doubt , when i do "show version " on live asa output says Active /active failover , does this means that i can only configure failover in active/active mode not in active/standby (which i want to do )?

please advice

sh ver


Licensed features for this platform:

Maximum Physical Interfaces  : 8

VLANs                        : 20, DMZ Unrestricted

Inside Hosts                 : Unlimited

Failover                   : Active/Active

VPN-DES                      : Enabled

VPN-3DES-AES                 : Enabled

VPN Peers                    : 25

WebVPN Peers                 : 2

Dual ISPs                    : Enabled

VLAN Trunk Ports             : 8

AnyConnect for Mobile        : Disabled

AnyConnect for Linksys phone : Disabled

Advanced Endpoint Assessment : Disabled

UC Proxy Sessions            : 2

This platform has an ASA 5505 Security Plus license.


I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
varrao Sat, 05/05/2012 - 14:02

If you have active/active license, you can configure active/standby as well, but if you only have active/standby then you cannot configure active/active failover.



Mohamed Sobair Sat, 05/05/2012 - 14:03


This is means it supports Active/Active Failover as well, So your Firewall now supports both Active/Standby and Active/Active Failover configuration.



amtbhatnagar Sat, 05/05/2012 - 14:12

thanks varun / mohammad for confirmation

how will i know in already exiting firewall in failover that it is active/active or acctive /standby ?



varrao Sat, 05/05/2012 - 14:25

Hi Amit,

active/active failover is done by creating contexts, you can check it by:

show failover

this output would show you if it is active/standby or active/active.

Read through this configuration docs as well, it would help:

Hope that helps,




This Discussion