Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
220
Views
0
Helpful
1
Replies

LAN-based failover

cvesth
Level 1
Level 1

‎01-28-2004 03:43 AM - edited ‎03-09-2019 06:14 AM

Hi

Regarding LAN-based failover in PIX'es

- is it possible and supported, having multiple failover installation in same subnet/vlan or should each set of PIX'es have their own subnet/VLAN ?

Thanks in advance.

-

Christian

Labels:
0 Helpful
1 Reply 1

scoclayton
Level 7
Level 7

‎01-28-2004 08:00 AM

Christian,

Same subnet - No

Same Vlan - Yes although not advised

Each interface on the PIX must be in a unique subnet. You can however connect multiple interfaces to the same backend VLAN but I don't know why you would really want to. To be ultra secure, each interface on the primary PIX *should* connect to the stand-by PIX via a seperate switch. In some cases, this is not feasible however so creating seperate VLAN's on 1 or 2 physical switches will also work.

Hope this makes sense.

Scott

0 Helpful
Customers Also Viewed These Support Documents