Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

Redundant PIX and OSPF

Hi

We jhave a pair of redundant pix firewalls running 6.3 os.

Last week we failed them over and all appeared well with the IP addresses swapping as expected, but we did have a loner that expected outage. This was approx 3 mins,, this was the time it took OSPF to become active. We we getting messages that the firewall was not able to route the packet during this period. We use a fail-over cable and a LAN connection for the state information.

Has anyone any experienced the same problem. The reason for the reload was a the primary firewall has a memory leak and we only had 20M of memory left.

Thanks

1 REPLY

Re: Redundant PIX and OSPF

You can

- put some static routes with AD more than ospf's 110.

- decrease failover timers

- decrease OSPF hello timers

117
Views
0
Helpful
1
Replies
CreatePlease to create content