Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
420
Views
0
Helpful
2
Replies

I dont know if this is the right place but Failover

pskipton01
Level 1
Level 1

‎08-07-2010 05:57 AM - edited ‎02-21-2020 04:02 AM

I have 2 ASA 5520's set

up in Active Passive failover. All the ports have ip's as required and all the ports are b

eing monitored. Question.. If it failes to the second firewall will all the same port IP's a

nd access to vlans be the same?

also access to the managment network?

0 Helpful
2 Replies 2

ufuk guler
Level 1
Level 1

‎08-07-2010 01:33 PM

Hello Perry,

                If your primary firewall fails, secondary firewall will undertake all active configurations. That means secondary firewall works with existing ip addresses which are assigned to primary firewall.

Ufuk Guler

0 Helpful

Magnus Mortensen
Cisco Employee
Cisco Employee
In response to ufuk guler

‎08-14-2010 07:39 PM

Perry, to follow up with what Ufuk said, if a failover occurs, the 'now active' firewall will start using the active IPs and MACs. The firewall will then send out a gratuitous arp so that all the switches know that the active MAC now resides on the port connected to the 'now active' firewall. The failover should be seamless to the end users.   - Magnus

Posted from my mobile device.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card