I'm fairly new to ASA management so would appreciate some feedback here. I have a single firewall at a remote site that is quickly becoming more mission ciritical. To remove the single point of failure I have a second identical unit I intend to install as a standby unit in an Active/Standby failover configuration.
I think i've got the jist of the failover configuration on the active and the standby but, my question is this;
How much config do I need to have on the new standby unit before it will talk to the active unit and sunchronise the config? I'm guessing it'll need the following configured;
State & Failover
If someone with some expereince of this could offer some advise i'd be very grateful.
I thought I should have mentioned this as well. When you configured the active and standby failover configuration, the standby device will synchronize the whole configuration from active FW, so all you need is a minimum configuration on standby unit as shown above.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...