Solved

PIX515 Failover Reset

Posted on 2007-11-21
6
862 Views
Last Modified: 2012-06-27
Due to replacing some cables over the weekend our PIX515E failed over to the standby unit. I want to switch it back and have issued a failover reset but the backup is still active. How can i switch this back without interupting our users?
0
Comment
Question by:akalbfell
  • 3
  • 3
6 Comments
 
LVL 4

Accepted Solution

by:
CCIE8122 earned 500 total points
ID: 20328787
You can only switch back to the primary without service interruption if you have configured stateful failover (which means that the state of all of the connections is replicated across the dedicated Ethernet link to the standby PIX), otherwise all connection's will be reset.  To verify this, issue the command:

show failover

You will be able to see if your are configured for stateful failover as there will be a section at the bottom with stateful failover statistics.

To switch back to the primary, issue the command:

failover reset

on the failed primary PIX, and then you can either disconnect or reload the secondary (active) PIX, or on the console of the standby primary, issue the command:

failover active

Note that you have to be consoled to the standby to issue this command, cuz if you try to telnet/ssh, you will connect to the active secondary.

HTH

kr
0
 
LVL 8

Author Comment

by:akalbfell
ID: 20329061
Just found it online, thanks for detailed explanation.
0
 
LVL 8

Author Comment

by:akalbfell
ID: 20331024
quick follow up, after issuing that command the primary PIX took over but the firewall is spitting out tons of data to hyperterminal since right after i input the command. Why is it doing that and how can i get it to stop. It looks like a bunch of information about the connections which i assumed was just because it was tearing down and creating new ones but its still going...any ideas???
0
What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

 
LVL 4

Expert Comment

by:CCIE8122
ID: 20331188
This is because you are connected to the console and you have console logging turned on.  You may either turn off console logging, or raise the logging level above the level you see all the messages (this is the number where "X" is below:

Nov 21 2007 14:39:01: %PIX-X-123456: Text message

So if "X" on the majority of the log entries is 4, then you would set console logging to 3 and the level 4 events would not echo to the console.  Note that if you are logging to a server, you want to be careful that you only modify the console logging setting.

kr
0
 
LVL 8

Author Comment

by:akalbfell
ID: 20331202
thanks much!
0
 
LVL 4

Expert Comment

by:CCIE8122
ID: 20331353
NP.  Good luck.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Connecting to CISCO 4402 WLC 3 45
Patch panel 7 49
Sonicwall TZ 190 2 22
HP network exams 3 31
Hello All, I have been training on Multicast for a while now and whenever I start the topic , I find out that my friends /  Colleagues mention that they do not know how to test Multicast Joins. As most of the multicast would be video traffic and …
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…

831 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question