Solved

Cisco ASA5510 Failover Config?

Posted on 2007-11-15
2
5,549 Views
Last Modified: 2013-11-16
Hi I've got two ASA5510's to be installed as a failover configuration active\passive. The primary is  the following:
ASA5510-AIP10-K9 ASA 5510 Appliance with AIP-SSM-10, SW, 3FE, 3DES/AES
Secondary is:
ASA5510-BUN-K9 ASA 5510 Appliance with SW, 3FE, 3DES/AES

I'm having a problem with the failover it complains about the module, I was told this config would work by more than one cisco guy. Will this config work, or do I need to have exact matching hardware for this solution?
0
Comment
Question by:merrybob
2 Comments
 
LVL 28

Accepted Solution

by:
batry_boy earned 125 total points
ID: 20293775
Unfortunately, the Cisco guys told you wrong.  You have to have IDENTICAL firewalls, down to the modules installed, the code versions, and any licensing (like for SSL VPN capability, or CSC licensing).  You'll need to either purchase another AIP-SSM-10 module to go into the second firewall or remove the existing one in order to configure failover....
0
 

Author Comment

by:merrybob
ID: 20293926
Hi thanks unfortunately I had a feeling that was the case! I was told this by my supplier, I guess they should accept the module back with any luck.

Thanks again.
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question