Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
389
Views
0
Helpful
1
Replies

Active active firewall

anand.dahiya
Level 1
Level 1

‎11-05-2009 07:35 AM - edited ‎03-11-2019 09:36 AM

Hi all

the scenario is

ASA-- --R1(Public subnet 1)---

-------Switch---------------------ISP1

ASA-- --R2(Public subnet 2)---

What is the best way to achive the redundancy both the firewalls in active active mode connected to switch and 2 routers connected to 1 ISP

Labels:
0 Helpful
1 Reply 1

mcroberts
Level 1
Level 1

‎11-10-2009 10:20 AM

In this scenario, you would have some logical separation of traffic. Lets take all LAN traffic. This will flow to Context A's inside interface of this context would need to be set as the default gateway for all of the connected devices. Now, lets say you also have a wireless network as well. You can send all of that traffic to Context B, making its inside interface your default gateway.

Now, you have your multiple contexts built. When setting up your failover, you would create failover groups on your admin context for context A and B. For context A, you would create the primary ASA as active and the standby ASA as standby. For the other context, you would create the standby ASA as active and the primary ASA as standby.

You now are sending active traffic through each firewall and each context can send all traffic to your single ISP as its default gateway.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card