09-16-2013 07:14 AM - edited 03-11-2019 07:39 PM
Hello,
I’m trying to see if it is possible to introduce two transparent ASA 5520s in an Active/Standby pair between 2 switches that don't currently run any form of STP.
Does anyone know if this is a supported configuration? I’m aware that if both ASA units thought that they were the master this could introduce a L2 loop but under normal operation would a failover succeed without creating a loop or is STP definitely required to achieve this set-up?
I'm trying to avoid having to use routed mode in this instance as re-numbering the address spaces would be quite difficult for this particular scenario.
Many thanks,
Andy
Solved! Go to Solution.
09-16-2013 11:35 AM
Hello Andy,
Exactly, while one unit is on standby mode it will not introduce any loop as it will not be forwarding any data.
That being said it's a supported scenario
For more information about Core and Security Networking follow my website at http://laguiadelnetworking.com
Any question contact me at jcarvaja@laguiadelnetworking.com
Cheers,
Julio Carvajal Segura
09-16-2013 11:35 AM
Hello Andy,
Exactly, while one unit is on standby mode it will not introduce any loop as it will not be forwarding any data.
That being said it's a supported scenario
For more information about Core and Security Networking follow my website at http://laguiadelnetworking.com
Any question contact me at jcarvaja@laguiadelnetworking.com
Cheers,
Julio Carvajal Segura
09-19-2013 03:33 AM
Thanks Julio. I'm going to recommend the routed mode even though it's likely to cause some short-term pain. But it's good to know that transparent mode should be possible if that's not an option.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide