Dear all, Is there a specific design guide when using ASA clustering with Nexus vPC? Basically I have two ASA which will be deployed in a clustering manner. The two ASA will then connect to two Nexus 5K in vPC mode. The security team wants to connect the ASA cluster control link via Nexus 5K also instead of back to back because in future they might add a third ASA in the cluster which they can then connect to N5K. Now is my question is: 1) How should i physically connect the two ASA with the two Nexus cluster control link? Do i put one link from each ASA to each N5K (option1) or do i do a cross connection which is from each ASA to both N5K (option2). Option 1: ASA 1 ASA 2 | | | | | | | | N5K1------vPc---------N5k2 The problem i see here is that both the ASA are no interconnected and there is a lot of traffic that goes on the cluster control link to maintain the cluster. Here when ASA 1 send any cluster keepalive to ASA 2 it will reach not ASA 2 because vPC will not allow traffic that was RECEIVED over a VPC peer-link to be sent out a vPC member port, which means N5K2 will not forward that traffic to ASA 2 coming ASA 1, am i right in this? ofcourse since both ASA are cluster i will put both its interface in LACP and same in both N5K also. Thanks, Aamir
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...
I am going to design and build an LAN network under a tunnel underground with long distance between the switches.
I will have 2 Catalyst switches and 8 Industrial IE3000, and they will be connected with fiber.
For now I am planning on use Layer-2 s...