Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

2 Switch 2 Firewall 6 Servers 6 Subnet

Hello Every body

     i have the Following Items

     2 ASA5510-SEC-BUN-K9

     2 WS-C2960-24TC-L

     6 HP DL380

     6 Vlan as

               10.78.0.46/24 outside

               172.16.2.0/24 APP-DMZ

               172.16.3.0/24 WEB-DMZ

               172.16.4.0/24 AD

               172.16.1.0/24 SYS-INFO

                192.168.201.0/24 Database

6 Server connected to the Switches using 2 NIC each one connect to Switch A,B , the 2 Firewal must be Active Standby HA

     the Desirable present Active Active Switches both NIC on each Server Should be Active mode no standby

     what is the Configuration and the Best scenario the have Active active on Servers NICs and Swtiches

     Kindly Check the Attached PIC for Explaination on Connection between the Each Gear..

Everyone's tags (3)
1 ACCEPTED SOLUTION

Accepted Solutions
VIP Purple

2 Switch 2 Firewall 6 Servers 6 Subnet

Your ASA interfaces on the active and standby unit have to "see" each other (ASA-1 Fa0/0 needs to talk to ASA-2 Fa0/0 and so on). For that you need an additional link between the two switches. But the teaming can't work in active-active as for that you need at least the 2960-S which supports stacking. But you can use an active-passive mode with these switches.

-- 
Don't stop after you've improved your network! Improve the world by lending money to the working poor:
http://www.kiva.org/invitedby/karsteni


--
Don't stop after you've improved your network! Improve the world by lending money to the working poor: http://www.kiva.org/invitedby/karsteni
3 REPLIES
VIP Purple

2 Switch 2 Firewall 6 Servers 6 Subnet

Your ASA interfaces on the active and standby unit have to "see" each other (ASA-1 Fa0/0 needs to talk to ASA-2 Fa0/0 and so on). For that you need an additional link between the two switches. But the teaming can't work in active-active as for that you need at least the 2960-S which supports stacking. But you can use an active-passive mode with these switches.

-- 
Don't stop after you've improved your network! Improve the world by lending money to the working poor:
http://www.kiva.org/invitedby/karsteni


--
Don't stop after you've improved your network! Improve the world by lending money to the working poor: http://www.kiva.org/invitedby/karsteni
New Member

2 Switch 2 Firewall 6 Servers 6 Subnet

hello thank you for your effort

that is what excatlly i face with NIC teaming , can you sepcify the mian reasone for that in details i have to shutdwon on of theswitches so the servers can work is it about looping or what the reason for that i try hard with that and it doesnt work

2 Switch 2 Firewall 6 Servers 6 Subnet

Hi,

Yes one of the reason is to prevent the loop as one of the link on the switch will be blocked due to STP.

Thanks

201
Views
0
Helpful
3
Replies