ASA 5510 Active/Active Failover Issue
I have two 5510's in an Active/Active configuration. All was well with failover active until...
I applied my new AnyConnect Premium Licenses via ASDM yesterday and I notice today when I looked at my config backups that a change was reported and I find the config stating "no failover"
So with that said the config before licensing was applied was
failover
failover lan unit primary
failover lan interface failover Ethernet0/2
failover key *********
failover link failover Ethernet0/2
failover interface ip failover X.X.X.X 255.255.255.0 standby X.X.X.X
no monitor-interface DMZ
no monitor-interface management
Now it is showing
no failover
failover lan unit primary
failover lan interface failover Ethernet0/2
failover key *****
failover link failover Ethernet0/2
failover interface ip failover X.X.X.X 255.255.255.0 standby X.X.X.X
no monitor-interface DMZ
no monitor-interface management
Ok, now to enable it via ASDM, it prompts me to configure failover peer
I'm thinking this is rather simple by adding my failover peer IP but I want to be 100% sure. I know all the information needed (interfaces, IP etc)
As you can see from the screen shot, do I simply enter the IP of the peer and that's that?
Luckily no config changes have been made so I am not concerned about inconsistencies between the two ASA's
I applied my new AnyConnect Premium Licenses via ASDM yesterday and I notice today when I looked at my config backups that a change was reported and I find the config stating "no failover"
So with that said the config before licensing was applied was
failover
failover lan unit primary
failover lan interface failover Ethernet0/2
failover key *********
failover link failover Ethernet0/2
failover interface ip failover X.X.X.X 255.255.255.0 standby X.X.X.X
no monitor-interface DMZ
no monitor-interface management
Now it is showing
no failover
failover lan unit primary
failover lan interface failover Ethernet0/2
failover key *****
failover link failover Ethernet0/2
failover interface ip failover X.X.X.X 255.255.255.0 standby X.X.X.X
no monitor-interface DMZ
no monitor-interface management
Ok, now to enable it via ASDM, it prompts me to configure failover peer
I'm thinking this is rather simple by adding my failover peer IP but I want to be 100% sure. I know all the information needed (interfaces, IP etc)
As you can see from the screen shot, do I simply enter the IP of the peer and that's that?
Luckily no config changes have been made so I am not concerned about inconsistencies between the two ASA's
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Yep - unfortunately
ASKER