Cisco Support
English
Feedback Help
Cisco Support Community
Register
cancel
turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
mmedwid
mmedwid
Community Member
‎05-09-2006 01:45 PM
‎05-09-2006 01:45 PM

Full Redundancy Pix Pair to Inside Switch Pair

Consider a scenario with redundant pix pair pixA and pixB (say 6.3x code) and internal switches sw1 and sw2. Fa0 of pixA is connected to port 3/1 or sw1 and fa0 of pixB is connected to port 3/1 of sw2. Assuming pixA is the primary and sw1 fails..is there a way for the pix pair to automagically failover to pixB? ie if carrier is lost on fa0 - fail to pixB. Thank-you.

0 Helpful
Reply
2 REPLIES
mmedwid
mmedwid
Community Member
‎05-10-2006 02:16 PM
‎05-10-2006 02:16 PM

Re: Full Redundancy Pix Pair to Inside Switch Pair

I finally got around to labbing this out in our lab and I find that indeed the pix will fail when it loses carrier on one of its configured for failover interfaces. Another engineer from another group had been swearing that a pix pair had not failed over in this scenario hence the question here. In the lab it appeared to take about 30 seconds to failover to the standby pix. "Problem" resolved.

0 Helpful
Reply
haithamnofal
haithamnofal
Community Member
‎05-12-2006 02:31 AM
‎05-12-2006 02:31 AM

Re: Full Redundancy Pix Pair to Inside Switch Pair

Hi,

PIX FW will failover if one case out of many has occurred, one of them is interface failure on the primary PIX... In yuor scenario, if s.s. 1 failed, obviously the PIX interface connected to this switch will become down and as consequence the 2nd PIX will take over the primary role.

Best of luck.

Haitham

0 Helpful
Reply
Latest Documents
Snort IPS on ISR, ISRv and CSR - Step-By-Step Configuration
Created by Kureli Sankar on 04-19-2018 11:25 AM
0
0
0
0
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin... view more
Upgrade Chassis Manager (FXOS)
Created by Jeet Kumar on 02-23-2018 02:51 AM
2
15
2
15
    Login to the FXOS chassis manager. Direct your browser to https://hostname/, and log-in using the user-name and password.     Go to Help > About and check the current version:    Check the current version availa... view more
ASA 5506-X with ipv6 no access to internet
Created by Klaxel on 02-08-2018 01:25 AM
3
5
3
5
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6. In Syslog I also se... view more
All Documents
108
Views
0
Helpful
2
Replies
CreatePlease to create content
Discussion
Blog
Document
Video
Popular Blogs
AnyConnect Certificate Based Authentication.
Created by Marvin Ruiz on 08-27-2012 05:20 PM
36
70
36
70
BLOG (No Title)
Created by athukral on 06-14-2011 04:23 AM
15
35
15
35
Wireless Hacking
Created by Anim Saxena on 01-24-2013 07:56 AM
2
20
2
20
All Blogs