Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

PIX Failover time

I'm hoping someone out there can definitively answer a question concerning failover time because I find conflicting information in the Cisco docs. We are debating turning on stateful failover for a new set of PIXes protecting a DMZ area - 525's w/ 6.3 code. If we do this and the primary PIX fails, how long does it take for the secondary to take over? Currently our production PIXes do LAN failover so fast we don't notice, but we've never done stateful failover. My concern is that the docs I find state it takes 30 seconds to failover. If I have a customer on my website and it fails, will they wait 30 seconds for a response or will I lose the business?

2 REPLIES
New Member

Re: PIX Failover time

this parameter is configurable using "failover poll" command. we have configured statful failover on a pair of 525s with 6.2(2) code. set the poll interval to 3 seconds. the stateful failover did not take 9 seconds before failing over, more like 4-5 seconds. tcp connections didn't get drop (feature of stateful). work like a charm. hope this help.

New Member

Re: PIX Failover time

Thanks for the information. That's good to hear.

83
Views
0
Helpful
2
Replies