Pix 515e failover

Posted on 2006-04-26
Last Modified: 2008-01-09
I am having problems getting failover to work.

I have One PIX 515e UR and one PIX 515e restricted. Both are running 7.0(1).  I configured the UR PIX and everything is running well for a year now. I purchased a second restricted PIX.  I connected the cable between the two firewalls, then enabled failover on the primary, and then booted up the second pix after cabling everyting.

Did I miss something?  It will not failover.

Output of sh fail on primary

gw1.harborview# sh fail
Failover On
Cable status: Normal
Failover unit Primary
Failover LAN Interface: N/A - Serial-based failover enabled
Unit Poll frequency 1 seconds, holdtime 3 seconds
Interface Poll frequency 15 seconds
Interface Policy 1
Monitored Interfaces 2 of 250 maximum
Last Failover at: 16:23:05 EDT Apr 26 2006
        This host: Primary - Active
                Active time: 1869 (sec)
                Interface outside ( Normal (Waiting)
                Interface inside ( Normal (Waiting)
        Other host: Secondary - Failed
                Active time: 0 (sec)
                Interface outside ( Unknown (Waiting)
                Interface inside ( Unknown (Waiting)

Stateful Failover Logical Update Statistics
        Link : Unconfigured.
Question by:jonathandouglas
    LVL 20

    Accepted Solution

    >I have One PIX 515e UR and one PIX 515e restricted
      Sorry, but a PIX with a Restricted license can't be used as a failover partner (neither primary or secondary).  You'd need one that's either got a UR or a FO (Failvoer) license.

    LVL 1

    Author Comment


    Off to get a new liscense.


    Featured Post

    What Security Threats Are You Missing?

    Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

    Join & Write a Comment

    If your business is like most, chances are you still need to maintain a fax infrastructure for your staff. It’s hard to believe that a communication technology that was thriving in the mid-80s could still be an essential part of your team’s modern I…
    Data center, now-a-days, is referred as the home of all the advanced technologies. In-fact, most of the businesses are now establishing their entire organizational structure around the IT capabilities.
    After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
    This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor ( If you're looking for how to monitor bandwidth using netflow or packet s…

    728 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    22 Experts available now in Live!

    Get 1:1 Help Now