Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
687
Views
0
Helpful
2
Replies

adding failover to active asa

Go to solution
Benjamin Saito
Level 1
Level 1

‎10-15-2012 12:35 PM - edited ‎03-11-2019 05:09 PM

I am adding a failover asa to an a firewall that is already in production. They are both 5510's, they both have the same abount of ram, have the same code versions. Will there be any downtime while adding the secondary in?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎10-15-2012 06:18 PM

No downtime is necessary.

Design your failover setup (i.e. which interface you will use for failover, IP address, will you use a state interface also, etc.). Add the failover interface configuration on the current ASA and turn on failover on that unit.

Then introduce the new unit with minimal configuration - just enough to tell it to look for the primary unit out the failover interface.

This guide is a bit dated but still valid.

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎10-15-2012 06:18 PM

No downtime is necessary.

Design your failover setup (i.e. which interface you will use for failover, IP address, will you use a state interface also, etc.). Add the failover interface configuration on the current ASA and turn on failover on that unit.

Then introduce the new unit with minimal configuration - just enough to tell it to look for the primary unit out the failover interface.

This guide is a bit dated but still valid.

0 Helpful

Go to solution
Benjamin Saito
Level 1
Level 1
In response to Marvin Rhoads

‎10-16-2012 07:37 AM

Thanks Marvin, I actually already added the firewall by the time you put this comment up. I lost connection to the active firewall when i added the standby ip, but only for a couple seconds. When i added the failover commands i lost connection for maybe 30 seconds. After that no drops in connectivity at all. Thanks for the reply.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card