synchronization of two ASA5550 with OS version 8.0.2 in transparent mode
Our customer has two ASA5550-K9 and asks us to configure both firewalls in transparent mode. These firewalls are design to protect traffic between outside and inside.
The 1st firewall's outside interface connect to first router 3825. The firewall's interface connect to first L3 switch.
The 2st firewall's outside interface connect to second router 3825. The firewall's interface connect to second L3 switch. Both 3825 routers and both L3 switches are running OSPF.
All paired interfaces reside in different segment (in other words they are all running as layer 3).
However, the requirements is to have firewall's rules will be exactly the same. Is there anyway to synchronize the firewall configuration for both firewalls by only configuring one machine?
The main objective is to ensure both configuration are exactly the same by configuring one machine only.
I understand that failover command has the capability to do this. But doing so, one of the firewalls must be in standby mode, however both firewalls are required to be active to eliminate the failover time.
Re: synchronization of two ASA5550 with OS version 8.0.2 in tran
Along those same lines...
I would like to setup two ASA5540's in a remote access VPN load-balancing cluster (which means I can't use failover). I want to be able to make changes on one ASA and have it replicate/sync to the other ASA.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...