PIX Failover setup question

Posted on 2004-12-01
Medium Priority
Last Modified: 2013-11-16
I just want to run this by the experts to make sure I have it correct. All I need to do to configure my redundant pix for failover is to give each interface an IP address on the existing subnet currently configured on the production firewall right? Then it is just a matter of configureing the production for failover, hooking up the failover cable and powering on the backup correct?

Production PIX -

Int 1 - outside
Int 2 -     dmz
Int 3 -    inside

Failover PIX -

Int 1 -  outside
Int 2 -       dmz
Int 3 -       inside

Is there anything else I need to do on the failover pix? Is there any good step by step articles that describe exactly how to do this?  
Question by:MrWhitefolks
LVL 11

Accepted Solution

billwharton earned 200 total points
ID: 12721868
Both of these documents are excellent resources on how to configure failover and understand the concepts beneath it.


LVL 79

Expert Comment

ID: 12723118
Basically, you don't have to do anything on the failover pix at all. All the configuration is done on the primary PIX.
Plug the failover cable between the PIX's, configure the primary with , enable failover - simple "failover" command, and you're done.

Here's Cisco's official documentation that explains in great detail..

Featured Post

Important Lessons on Recovering from Petya

In their most recent webinar, Skyport Systems explores ways to isolate and protect critical databases to keep the core of your company safe from harm.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

It’s time for spooky stories and consuming way too much sugar, including the many treats we’ve whipped for you in the world of tech. Check it out!
Your business may be under attack from a silent enemy that is hard to detect. It works stealthily in the shadows to access and exploit your critical business information, sensitive confidential data and intellectual property, for commercial gain. T…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question