Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

monitor-interface configuration not replicated to secondary PIX

I have a PIX 515 in Active\Passive failover on PIX 7.0(2). I have disabled monitoring of several interfaces with the "no monitor-interface" command as they are not in use. When checking failover on secondary firewall all interfaces are being monitored and the "no monitor-interface" configuration ahs not been replicated. Does anyone know if this is a bug or intentional?

New Member

Re: monitor-interface configuration not replicated to secondary

Each command u give on the Active unit should be "executed" on the Standby unit too by the failover framework otherwise the failover function would not work in case of failure of the primary unit giving u a working device with a different configuration, this is real also for the no monitor-interface command.

What about if u do a "write standby" on the active unit?



New Member

Re: monitor-interface configuration not replicated to secondary

I have done a write standby and this has not fixed the issue. I have even entered the configuration on the secondary PIX directly then done a write standby from the primary, this has overwriten configuration and the original issue reappears. The write standby does not seem to replicate the "no monitor-interface" commands.

CreatePlease login to create content