Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1104
Views
5
Helpful
4
Replies

Can I use the ASA management Interface for Failover ?

Go to solution
harpritsingh
Level 1
Level 1

‎01-10-2007 12:14 PM - edited ‎03-11-2019 02:18 AM

Frnds,

Just a quick Question

Cisco site states that "The ASA 5510 and higher adaptive security appliance includes a dedicated management interface called Management 0/0, which is meant to support traffic to the security appliance. However, you can configure any interface to be a management-only interface using the management-only command. Also, for Management 0/0, you can disable management-only mode so the interface can pass through traffic just like any other interface"

So if I disable the management-only mode using the following commands.

hostname(config)# interface management0/0

hostname(config-if)# no management-only

Will I be able to use the Management Interface for Failover purposes ?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
jwalker
Level 3
Level 3

‎01-10-2007 02:08 PM

Yes. It works the exact same as if you used a normal interface. Here's a sample of one I did..

interface Management0/0

description LAN/STATE Failover Interface

failover

failover lan unit primary

failover lan interface fail Management0/0

failover polltime unit 5 holdtime 15

failover key *****

failover link fail Management0/0

failover interface ip fail 10.255.255.1 255.255.255.252 standby 10.255.255.2

Pls rate if this helps.

Cheers.

View solution in original post

0 Helpful
4 Replies 4

Go to solution
jwalker
Level 3
Level 3

‎01-10-2007 02:08 PM

Yes. It works the exact same as if you used a normal interface. Here's a sample of one I did..

interface Management0/0

description LAN/STATE Failover Interface

failover

failover lan unit primary

failover lan interface fail Management0/0

failover polltime unit 5 holdtime 15

failover key *****

failover link fail Management0/0

failover interface ip fail 10.255.255.1 255.255.255.252 standby 10.255.255.2

Pls rate if this helps.

Cheers.

0 Helpful

Go to solution
harpritsingh
Level 1
Level 1
In response to jwalker

‎01-10-2007 05:29 PM

Thanks alot jwalker

0 Helpful

Go to solution
jim
Level 1
Level 1
In response to harpritsingh

‎01-11-2007 10:11 AM

Just a side note. Cisco does not support this. If you have a high rate of xlates and connections it will fall behind while trying to Synchronize on a 100mb link causing other problems.

Just an FYI..

BTW we use the management port for failover :)

Go to solution
harpritsingh
Level 1
Level 1
In response to jim

‎01-11-2007 06:40 PM

Thanks for that little bit of info

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card