Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1152
Views
0
Helpful
2
Replies

FTD-HA mode ether channel failure

Support ACME
Level 1
Level 1

‎04-08-2019 03:13 PM - edited ‎02-21-2020 09:01 AM

Dear ALL,

 

I 'm setup the FTD 2140 with HA mode, we have two interface, one is outside port ( TWO 10G port as etherchannel 1), one is internal port ( TWO 10G port as etherchannel 2 with 5 VLANS subnet)), the each etherchannel group is connected to two Cisco switch, and the switch is  stack mode, i have a question are below listed

1. if i shutdown the FW1 two outside network port, the traffic can't go thought, the FW1 can't failover to FW2, Anyone can help to solve the problem?

2. i found when i enable any monitoring Interfaces, the FW2 status is said failed, not standby already, Can help to explain more?

 

Support

0 Helpful
2 Replies 2

GRANT3779
Spotlight
Spotlight

‎04-09-2019 03:37 AM

When FW1 is up and passing traffic, what is the status of the Etherchannel to FW2 when looking at it from the switch perspective?
0 Helpful

Support ACME
Level 1
Level 1
In response to GRANT3779

‎04-09-2019 10:31 AM

Dear GRANT3779,

 

I had solved the etherchannel can't failover issue, it should be the port channel setting, it is becasue i set the all port into same channel group.

In my case, it should have 7(one is diagnostic port) interfaces under monitored interfaces list, should  I enable the all inside port to "Monitor this interface for failures" and change the failure Limit  -> number of failed interfaces exceed to 3(because we total have 6 monitored interfaces)?

 

Support

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card