Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Port channel issue in ASA

We have two Cisco ASA 55XX Firewalls and both are in HA (Active/Standy). Two ports from each Firewall is connecting two ports of Nexus 5K Switch and running port channel between Firewall & Nexus Switch and port-channel is UP. And Switches having back to back connection with allowed all VLAN trunk port.

FW01 ----------------- SW01 (Two ports with Port channel)

FW02 ----------------- SW02 (Two ports with Port channel)

I have VLAN 10 with IP Subnet 10.10.10.0/28

SW01 : 10.10.10.2

SW02 : 10.10.10.3

HSRP IP : 10.10.10.1

FWs :  10.10.10.4 & 10.10.10.5

Firewall Default Gateway : 10.10.10.1

Problem : I am not able Ping Firewall IPs from Nexus Switches. When I checked ARP table in Nexus Switch; I have observed that Firealls two IPs having same MAC address; when I checked that MAC address in the Firewall; that MAC address is Port channel interface MAC address.

This is issue (two IPs learing same MAC address) from ASA.

How to fix this issue ?

Thanks

Venkat

667
Views
0
Helpful
0
Replies
CreatePlease to create content