• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1237
  • Last Modified:

CISCO ASA Active Active - VPN config

Dear Team,

As per CISCO:

"When the security appliance is configured for Active/Active stateful failover, you cannot enable IPsec or SSL VPN. Therefore, these features are unavailable. VPN failover is available for Active/Standby failover configurations only."



Could some one assist me why it will not support on A-A failover???

Regards,
LAJAN JALEEL
0
Lajan Jaleel
Asked:
Lajan Jaleel
1 Solution
 
Robert Sutton JrSenior Network ManagerCommented:
What version IOS are you running?

With Active/Active you are running in Multiple Context mode or basically "Virtual" firewalls. If you are running IOS 9.0 or later you can ONLY use IpSec L2L VPN.  Any other form of clientless or client vpn is NOT supported at this time.

You can however run a pair in a normal Active/Standby mose (Which is not Multiple context mode) and run any VPN the device supports.

Hope this helps.
0

Featured Post

IT Degree with Certifications Included

Aspire to become a network administrator, network security analyst, or computer and information systems manager? Make the most of your experience as an IT professional by earning your B.S. in Network Operations and Security.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now