ssh is not working when 525 primary firewall goes to secondary
We are having 525 Firewall with UR and FO license. Sometimes cpu utilization will goes to 90 percent and it will go to secondary. Whenever primary goes to secondary SSH it will not work. Please help me to resolve the following 3 issues.
Re: ssh is not working when 525 primary firewall goes to seconda
1. For the CPU issue, I would suggest that you implement an IDS policy on all your interfaces and monitor the audit counters. A possible cause is an "ICMP unreacheable" attack; this attack might drive the PIX crazy and might cause such a high utilization.
2. If you are running PIX OS 6.3 you will need to run the command "ca save all" on both units which saves the RSA keys. Writing the config to memory will not be enough unless you start using PIX OS 7.0 which saves RSA keys when typing "write mem".
3. The primary will not jump to secondary unless there is something wrong. I have failover'ed PIXs running smoothly for ages and nuthing happened. I would suggest that you go to the documentation of the PIX and read through the reasons that might cause a PIX to switch to failover and then match that against your setup.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...