Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1363
Views
5
Helpful
1
Replies

2140 NGFW Interface IP Addresses in HA Configuration

Go to solution
Jim Matuska
Level 1
Level 1

‎02-06-2019 09:44 AM - edited ‎03-12-2019 07:16 AM

I am configuring 2 Model 2140 Firepower NGFW's in a high availability cluster through the Cisco Firewall Management center server.  

 

I have the cluster up and operational and have a separate IP address assigned to each firewall's management interface as well as an IP address to each devices Failover/State Interface that connects the firewalls together with a direct attach SFP+ 10 Gbit cable.  

 

I am used to the ASA HA configurations and expected to need a separate IP address for of the traffic interfaces (Inside, Outside, etc.) on each device.  Thinking then I would need an ip address for the active 2140's Inside Interface, and an ip address for the standby 2140's inside interface, etc.

 

I cannot find anywhere to configure interface IP's other than under the HA group and that only lets me set one IP address per interface for the group.  

 

Do I need an ip address for each standby data interface or with the NGWF's do they now just share one IP address per data interface?  

 

Jim

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions
1 Reply 1

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎02-08-2019 03:10 PM

couple of deployment we did with below config guide :

 

sure it will help you :

 

https://www.cisco.com/c/en/us/support/docs/security/firepower-management-center/212699-configure-ftd-high-availability-on-firep.html

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card