Friday, June 19, 2009

Configure Cisco ASA Failover on Management Interface

I sometimes like to configure failover across the management interface so that I don't have to use up one of the other physical interfaces for the failover link.

Primary Unit:

failover
failover lan unit primary
failover lan interface failover Management0/0
failover link failover Management0/0
failover interface ip failover 192.168.254.1 255.255.255.0 standby 192.168.254.2

Secondary Unit:

no failover
failover lan unit secondary
failover lan interface failover Management0/0
failover link failover Management0/0
failover interface ip failover 192.168.254.1 255.255.255.0 standby 192.168.254.2

When you are ready to pull down the config from the primary issue the failover command.
Replication should begin and the active light on your secondary asa should turn to orange indicating successful secondary status.

Use the show failover command to verify the failover status.

For more information:

2 comments:

  1. Nice post! Helped me lot in my company..to configure a VOIP device..thanks very much.

    IP & Data Network Engineer CV

    ReplyDelete
  2. Thank you for this post. I am glad you took the time to put it out there. Don't you wish the spam comment-bots clicked on ads when they add their spam comments? That would be nice. Well, I saw an ad on this site that interested me and was glad to click on it. Hopefully you will get $.50 from that. Keep posting!

    ReplyDelete