Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1439
Views
0
Helpful
2
Replies

ASA Failover | failover group ?

Jon Eyes
Level 1
Level 1

‎12-10-2013 03:43 PM - edited ‎03-11-2019 08:15 PM

We just purchased two asa firewall to be setup in an active/active configuration. But when im doing my initial configuration, the failover group command is somewhat missing

ASA1(config)# failover ?


configure mode commands/options:

  interface         Configure the IP address to be used for failover and/or

                    stateful update information

  interface-policy  Set the policy for failover due to interface failures

  ipsec             Configure the use of IPSec tunnel for failover

  key               Configure the failover shared secret or key

  lan               Specify the unit as primary or secondary or configure the

                    interface and vlan to be used for failover communication

  link              Configure the interface and vlan to be used as a link for

                    stateful update information

  mac               Specify the virtual mac address for a physical interface

  polltime          Configure failover poll interval

  replication       Enable HTTP (port 80) connection replication

  timeout           Specify the failover reconnect timeout value for

                    asymmetrically routed sessions

  <cr>

exec mode commands/options:

  active          Make this system to be the active unit of the failover pair

  exec            Execute command on the designated unit

  reload-standby  Force standby unit to reboot

  reset           Force a unit or failover group to an unfailed state

Looking at the license, i got this

Licensed features for this platform:

Maximum Physical Interfaces       : Unlimited      perpetual

Maximum VLANs                     : 150            perpetual

Inside Hosts                      : Unlimited      perpetual

Failover                          : Active/Active  perpetual

Encryption-DES                    : Enabled        perpetual

Encryption-3DES-AES               : Enabled        perpetual

Security Contexts                 : 2              perpetual

GTP/GPRS                          : Disabled       perpetual

AnyConnect Premium Peers          : 2              perpetual

AnyConnect Essentials             : Disabled       perpetual

Other VPN Peers                   : 750            perpetual

Total VPN Peers                   : 750            perpetual

Shared License                    : Disabled       perpetual

AnyConnect for Mobile             : Disabled       perpetual

AnyConnect for Cisco VPN Phone    : Disabled       perpetual

Advanced Endpoint Assessment      : Disabled       perpetual

UC Phone Proxy Sessions           : 2              perpetual

Total UC Proxy Sessions           : 2              perpetual

Botnet Traffic Filter             : Disabled       perpetual

Intercompany Media Engine         : Disabled       perpetual

Cluster                           : Disabled       perpetual

ASA1(config)# failover group 1

                         ^

ERROR: % Invalid input detected at '^' marker.

Active/Active failover is enable

Anybidy have an idea what am i missing?

Thanks

Labels:
0 Helpful
2 Replies 2

Collin Clark
VIP Alumni
VIP Alumni

‎12-11-2013 07:46 AM

Have you already configured failover? Are you in the system context?

0 Helpful

Jon Eyes
Level 1
Level 1
In response to Collin Clark

‎12-11-2013 04:35 PM

Thanks Collin.

Already figured it out. I was still in single mode

I'll continue the configuration and if I come across any issue, i'll post it here.

Wish me luck

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card