For disaster recovery purposes, we have two ASA's. One is at our main corporate office, the other is at an offsite DR facility. I have worked up a vpn configuration for the remote offices that should allow them to automatically failover to the DR facility if corporate goes offline for some reason. My concern is with the ASA itself. We have OSPF setup on each ASA that advertises the remote office subnets that connect to it. Even if that office is not connected the ASA still advertises that it can route that subnet.
Is there a way that we can only have the ASA advertise that it can route a subnet if a particular tunnel is up or do we need to use a manual procedure to fail over the remote endpoints to the DR facility ?
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...