CISCO ASA Standby IP Address

Dear Team,

What is the purpose of Standby IP address on the interfaces in CISCO ASA (failover mode A-P) other than exchanging HB.

Regards,
LAJAN JALEEL
LVL 1
Lajan JaleelAsked:
Who is Participating?
 
ffleismaConnect With a Mentor Senior Network EngineerCommented:
one thing i can think of, is for access to standby firewall directly. in case you'll need to check sync file, status, ver, config, serial, etc.

other than that, standby unit takes over primary IP during failover anyway

hope this helps, or if other experts can add. not sure if ASA does keepalive or monitoring of peer using standby IP or failover link.
0
 
max_the_kingCommented:
Hi,

Without a standby IP address,  in case of a failover, the ASA will not clear its routing table. It needs an IP address on the interface to clear it.

Without a standby IP address, the ASA will leave the duplicate routes in place when the unit becomes active until they are cleared manually.
hope this helps
max
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.