Solved

sonicwall nsa2400 active/passive failover

Posted on 2014-12-04
3
161 Views
Last Modified: 2015-01-27
hey guys,

we have one current sonicwall nsa 2400 firewall thats running. I have a second nsa 2400 i'd like to add now and configure it as the passive firewall. Can someone walk me through?

Thanks!
0
Comment
Question by:Cobra25
3 Comments
 
LVL 20

Accepted Solution

by:
carlmd earned 500 total points
ID: 40482645
I assume you mean HA. Look at the following...

https://support.software.dell.com/kb/sw6234
0
 
LVL 4

Author Comment

by:Cobra25
ID: 40503918
Let me look into..
0
 
LVL 5

Expert Comment

by:Feroz Ahmed
ID: 40573587
Hi,

It is a lengthy process and you have to do all the configurations on ASA firewall and then need to enable Failover on firewall and need to configure Failover .The cconfiguration should be as follows :

Inside Network

ASA#config t
ASA(Config-t)#inside network
ASA(Config-t)#nameif inside
ASA(config-t)#Security-level 100 (As it is inside network by default)

Outside Network
ASA#config t
ASA(Config-t)#outside network
ASA(Config-t)#nameif outside
ASA(config-t)#Security-level 0(As it is outside network by default)

If there is any DMZ network then as below :

ASA#config t
ASA(Config-t)#DMZ network
ASA(Config-t)#nameif DMZ
ASA(config-t)#Security-level 50 (As it is DMZ network by default)

Once the above configuration is done one has to define Access-list to communicate inside network with outside network and viceversa.Once done with Interface configuration .One has to configure Failover on ASA Firewall first enable Failover and one should configure Failover in 2 states Active and Passive .
Check with below command whether the failover was successfull by typing the command :

sh failover status it will show as active and standby no configured .

Now goto another ASA and repeat the same above steps and once the Failover is configured then a message will be sent to ASA1 from ASA2 failover successfull once you see this message you can confirm the Failover was Successfully configured on ASA1 and ASA2 and it shows the status as Failover in Active state on both the ASA1 and ASA2 and Standby waiting.

You can try the above steps for configuring Failover on ASA i have just given a rough idea on how to configure Failover on ASA you are supposed to enter IP Address and then need to update the configuration on ASA.
0

Featured Post

VMware Disaster Recovery and Data Protection

In this expert guide, you’ll learn about the components of a Modern Data Center. You will use cases for the value-added capabilities of Veeam®, including combining backup and replication for VMware disaster recovery and using replication for data center migration.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

I recently updated from an old PIX platform to the new ASA platform.  While upgrading, I was tremendously confused about how the VPN and AnyConnect licensing works.  It turns out that the ASA has 3 different VPN licensing schemes. "site-to-site" …
To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

792 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question