Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Denied Failover Traffic

On the secondary PIX, one of the inside interfaces is showing failed. In doing a failover reset, the device clears. Maybe thrity seconds later, it fails again. I turned on failover logging and got the following:

May 19 22:44:00 Failover/Failover May 19 2003 20:41:00: %PIX-3-106010: Deny inbound protocol 105 src Primary:10.193.249.1 dst inside:10.193.249.2

May 19 22:44:00 Failover/Failover May 19 2003 20:41:00: %PIX-3-106011: Deny inbound (No xlate) protocol 105 src Primary:10.193.249.1 dst Primary:10.193.249.2

May 19 22:44:05 Failover/Failover May 19 2003 20:41:05: %PIX-3-106010: Deny inbound protocol 105 src Primary:10.193.249.1 dst inside:10.193.249.2

Is it possible to add a ACL to allow this traffic? Thanx.

1 REPLY
New Member

Re: Denied Failover Traffic

Probably the interface hardware settings for the inside interface have a mismatch.. one set to auto and the other set to a fixed value etc.. try changing any 'auto' settings to a fixed setting...

ofcourse the age-old question comes up: from when is the problem occuring?? did anything change to trigger this problem?

Best regards / Sampath.

453
Views
0
Helpful
1
Replies