?
Solved

PIX515 Failover Reset

Posted on 2007-11-21
6
Medium Priority
?
865 Views
Last Modified: 2012-06-27
Due to replacing some cables over the weekend our PIX515E failed over to the standby unit. I want to switch it back and have issued a failover reset but the backup is still active. How can i switch this back without interupting our users?
0
Comment
Question by:akalbfell
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
6 Comments
 
LVL 4

Accepted Solution

by:
CCIE8122 earned 2000 total points
ID: 20328787
You can only switch back to the primary without service interruption if you have configured stateful failover (which means that the state of all of the connections is replicated across the dedicated Ethernet link to the standby PIX), otherwise all connection's will be reset.  To verify this, issue the command:

show failover

You will be able to see if your are configured for stateful failover as there will be a section at the bottom with stateful failover statistics.

To switch back to the primary, issue the command:

failover reset

on the failed primary PIX, and then you can either disconnect or reload the secondary (active) PIX, or on the console of the standby primary, issue the command:

failover active

Note that you have to be consoled to the standby to issue this command, cuz if you try to telnet/ssh, you will connect to the active secondary.

HTH

kr
0
 
LVL 8

Author Comment

by:akalbfell
ID: 20329061
Just found it online, thanks for detailed explanation.
0
 
LVL 8

Author Comment

by:akalbfell
ID: 20331024
quick follow up, after issuing that command the primary PIX took over but the firewall is spitting out tons of data to hyperterminal since right after i input the command. Why is it doing that and how can i get it to stop. It looks like a bunch of information about the connections which i assumed was just because it was tearing down and creating new ones but its still going...any ideas???
0
Four New Appliances. Same Industry-leading Speeds.

But don't take it from us.  The Firebox M370 is Miercom tested and Miercom approved, outperforming its competitors for stateless and stateful traffic throughput scenarios.  Learn more about the M370, M470, M570 and M670 and find the right solution for your organization today!

 
LVL 4

Expert Comment

by:CCIE8122
ID: 20331188
This is because you are connected to the console and you have console logging turned on.  You may either turn off console logging, or raise the logging level above the level you see all the messages (this is the number where "X" is below:

Nov 21 2007 14:39:01: %PIX-X-123456: Text message

So if "X" on the majority of the log entries is 4, then you would set console logging to 3 and the level 4 events would not echo to the console.  Note that if you are logging to a server, you want to be careful that you only modify the console logging setting.

kr
0
 
LVL 8

Author Comment

by:akalbfell
ID: 20331202
thanks much!
0
 
LVL 4

Expert Comment

by:CCIE8122
ID: 20331353
NP.  Good luck.
0

Featured Post

Building an interactive eFuture classroom

Watch and learn how ATEN provided a total control system solution including seamless switching matrix switch, HDBaseT extenders, PDU, lighting control to build an interactive eFuture classroom.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Do you have a computer or other electronic gear that is attached to a rat nest of cables, or alternatively have your cables all bundled nice at neat?  If so then read this post to sidstep common pitfalls. When I was a student at DeVry University,…
Before I go to far, let's explain HA (High Availability) and why you should consider it.  High availability is the mechanism used to provide redundancy to any service at the same site and appears as a single service to the users of that service.  As…
Michael from AdRem Software outlines event notifications and Automatic Corrective Actions in network monitoring. Automatic Corrective Actions are scripts, which can automatically run upon discovery of a certain undesirable condition in your network.…
Have you created a query with information for a calendar? ... and then, abra-cadabra, the calendar is done?! I am going to show you how to make that happen. Visualize your data!  ... really see it To use the code to create a calendar from a q…
Suggested Courses

765 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question