Is there a way around this? I have to basically assign an IP/subnet just for failover for each interface I want to use as vlans.
I have 2 pix 515E fw v6.3(4) in lan based failover mode.
5 physical interfaces.
state (failover)
indside
outside
dmz
dmz2
I have 4 vlans, 2 each configured on the dmz ints.
Do you need to use the physical command on the interface given this topology? If not why do I keep receiving messages that my ip address is not configured or failover ip is not configured. This occurs when I do not assign an IP to the phiysical port but do I assign it to the logical and failover is enabled. also I do ot believe these interfaces will be in failover mode unless I use the physical command when using vlans. It seems like I have to us the physical and assign an IP for each physical int.