asa failover

Posted on 2015-01-09
Last Modified: 2015-01-09
I need to do an asa failover, I have attached a picture for identification. Will I be able to do the failover in this situation? I have different IP on each side. The link in the middle between the firewalls will obviously match. Uusally when you do the failover, the interfaces IP’s match, are on the same network. If I can’t do that, are there any other option for me to have an asa failover in this situation?
Question by:Shark Attack
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2

Author Comment

by:Shark Attack
ID: 40541351
Also, I have two different ISP connections as shown in the picture
LVL 28

Assisted Solution

by:Jan Springer
Jan Springer earned 500 total points
ID: 40541368
You may be able to do IP SLA on the ASAs for the outside interfaces and VRRP on the inside interfaces (I have not done VRRP on the ASAs.).

Author Comment

by:Shark Attack
ID: 40541389
is there a reason why I can't do vrrp inside and out or ip sla on inside and outside?
LVL 28

Accepted Solution

Jan Springer earned 500 total points
ID: 40541393
You cannot do VRRP on the outside interface because they are different subnets.

You might be able to do IP SLA on the inside interfaces but the best thing would be to put IP SLA on a layer 3 switch to select the default route depending upon the SLA configuration.

Featured Post

Online Training Solution

Drastically shorten your training time with WalkMe's advanced online training solution that Guides your trainees to action. Forget about retraining and skyrocket knowledge retention rates.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Exchange server is not supported in any cloud-hosted platform (other than Azure with Azure Premium Storage).
If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
Here's a very brief overview of the methods PRTG Network Monitor ( offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

751 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question