Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Does Cisco ASA 5505 active/standby require standby ip address on all interfaces?

Posted on 2013-10-23
2
Medium Priority
?
583 Views
Last Modified: 2013-10-23
We have a pair of ASA 5505 firewalls configured in active/standby mode, with five interfaces / vlans / subnets configured, some with private IP ranges, some public.  It all works.

Business requirements are dictating that we split some of our subnets into smaller pieces to isolate certain applications from others.  All the instructions I find re: active/standby configurations say to specify a standby IP address on all interfaces other than the failover link.

When dealing with, say, /28 subnets, chewing up two of the addresses for the firewalls can start being a significant percentage of the available addresses in that subnet.

Is it really necessary to add a standby IP address for all interfaces, or could we get by with doing so on just the interfaces through which we're likely to connect to the management interface?
0
Comment
Question by:TerryMott
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 7

Accepted Solution

by:
tolinrome earned 2000 total points
ID: 39594512
0
 

Author Closing Comment

by:TerryMott
ID: 39595445
Great! Thanks.
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I found an issue or “bug” in the SonicOS platform (the firmware controlling SonicWALL security appliances) that has to do with renaming Default Service Objects, which then causes a portion of the system to become uncontrollable and unstable. BACK…
A 2007 NCSA Cyber Security survey revealed that a mere 4% of the population has a full understanding of firewalls. As business owner, you should be part of that 4% that has a full understanding.
In this video, Percona Solutions Engineer Barrett Chambers discusses some of the basic syntax differences between MySQL and MongoDB. To learn more check out our webinar on MongoDB administration for MySQL DBA: https://www.percona.com/resources/we…
We’ve all felt that sense of false security before—locking down external access to a database or component and feeling like we’ve done all we need to do to secure company data. But that feeling is fleeting. Attacks these days can happen in many w…
Suggested Courses

618 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question