• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1885
  • Last Modified:

ASA 5510 Active/Active Failover Issue

I have two 5510's in an Active/Active configuration. All was well with failover active until...

I applied my new AnyConnect Premium Licenses via ASDM yesterday and I notice today when I looked at my config backups that a change was reported and I find the config stating "no failover"

So with that said the config before licensing was applied was


failover
failover lan unit primary
failover lan interface failover Ethernet0/2
failover key *********
failover link failover Ethernet0/2
failover interface ip failover X.X.X.X 255.255.255.0 standby X.X.X.X
no monitor-interface DMZ
no monitor-interface management

Now it is showing

no failover
failover lan unit primary
failover lan interface failover Ethernet0/2
failover key *****
failover link failover Ethernet0/2
failover interface ip failover X.X.X.X 255.255.255.0 standby X.X.X.X
no monitor-interface DMZ
no monitor-interface management

Ok, now to enable it via ASDM, it prompts me to configure failover peer

Configure Failover Peer
I'm thinking this is rather simple by adding my failover peer IP but I want to be 100% sure. I know all the information needed (interfaces, IP etc)

As you can see from the screen shot, do I simply enter the IP of the peer and that's that?


Luckily no config changes have been made so I am not concerned about inconsistencies between the two ASA's
0
dswope79
Asked:
dswope79
  • 2
1 Solution
 
Ken BooneNetwork ConsultantCommented:
The problem is that you added a vpn premium license to one unit.  When you did that you broke the failover.  For failover to work, all licenses must match.  Everything in the boxes must match otherwise failover will not work.  You will need to purchase the same license for the failover unit as well before you will be able to restore the failover setup.
0
 
dswope79Author Commented:
^ Was thinking that was it but hoping not. Ugh!
0
 
Ken BooneNetwork ConsultantCommented:
Yep - unfortunately
0

Featured Post

 The Evil-ution of Network Security Threats

What are the hacks that forever changed the security industry? To answer that question, we created an exciting new eBook that takes you on a trip through hacking history. It explores the top hacks from the 80s to 2010s, why they mattered, and how the security industry responded.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now