Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
396
Views
0
Helpful
3
Replies

PIX Failover

Go to solution
peter.gehrmann
Level 1
Level 1

‎11-21-2003 06:55 AM - edited ‎02-20-2020 11:07 PM

We have a PIX 515e failover bundle. In the documentation I read that the failover PIX will reboot very 12 hours min. Does this also occur in a "regular" failover design?

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
gfullage
Cisco Employee
Cisco Employee
In response to peter.gehrmann

‎11-24-2003 02:32 PM

If the failover lan interface link status is up:

    * The FO-only PIX will boot and automatically become active if it fails to detect the primary UR PIX.

    * The unit will reload itself every following 24 hours, automatically becoming active each time.

If the failover lan interface link status is down:

    * The FO-only PIX will boot and come online but not become active.

    * The command failover active must be manually executed to make the unit active.

    * The unit will reload itself every following 24 hours, requiring another manual failover active to make it active each time.

This is precisely why we suggest to connect failover PIX's via a switch rather than a crossover cable.

View solution in original post

0 Helpful
3 Replies 3

Go to solution
gfullage
Cisco Employee
Cisco Employee

‎11-23-2003 03:30 PM

This only occurs on the FO-licensed PIX, and only if it isn't connected to the UR licensed PIX. It's basically to stop people buying a cheaper FO PIX and putting it at a site by itself.

If the UR licensed PIX ever dies, the FO one will take over. As long as the UR PIX is still connected (even if it's powered off), then the FO PIX will run as normal with no disruption to service. You can then arrange a replacement for the UR PIX at your leisure.

0 Helpful

Go to solution
peter.gehrmann
Level 1
Level 1
In response to gfullage

‎11-24-2003 12:15 AM

Thank for this reply. But sorry, I have forgotten, that we run a LAN based failover. We are not using the Cisco failover link cable. Is this statement also valid for the LAN based failover.

0 Helpful

Go to solution
gfullage
Cisco Employee
Cisco Employee
In response to peter.gehrmann

‎11-24-2003 02:32 PM

If the failover lan interface link status is up:

    * The FO-only PIX will boot and automatically become active if it fails to detect the primary UR PIX.

    * The unit will reload itself every following 24 hours, automatically becoming active each time.

If the failover lan interface link status is down:

    * The FO-only PIX will boot and come online but not become active.

    * The command failover active must be manually executed to make the unit active.

    * The unit will reload itself every following 24 hours, requiring another manual failover active to make it active each time.

This is precisely why we suggest to connect failover PIX's via a switch rather than a crossover cable.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card