11-08-2017 02:57 AM - edited 02-21-2020 06:40 AM
We have a pair of ASA 5520's in a cluster running asa 8.2(5)13 where the primary member has been off line for ~ 6 months.
I want to reintroduce the primary back into the cluster. There have been numerous changes made to the config of the secondary-active and naturally the config on the primary-failed is out of date.
reviewing a cisco asa config guide my understanding is that once the primary is reconnected to the secondary, it should:
I want to be doubly sure that the primary-failed does not somehow become active.
My plan is to:
I'm hoping for minimum downtime, which i should achieve so long as everything works as expected.
Does the above look right, anyone have any suggestions or gotchas to look for.
Solved! Go to Solution.
11-08-2017 04:01 AM
That would be an OK approach.
I'd personally go a bit further and strip down the currently inactive to a minimal configuration to allow it to sync as Secondary. Consider that the Primary and Secondary roles are a bit arbitrary in ASA HA pairs. There's seldom a reason why one physical unit has to be in the Primary role. So you could just change the currently online unit to Primary and re-introduce the other one as Secondary.
02-16-2018 07:31 AM
11-08-2017 04:01 AM
That would be an OK approach.
I'd personally go a bit further and strip down the currently inactive to a minimal configuration to allow it to sync as Secondary. Consider that the Primary and Secondary roles are a bit arbitrary in ASA HA pairs. There's seldom a reason why one physical unit has to be in the Primary role. So you could just change the currently online unit to Primary and re-introduce the other one as Secondary.
11-08-2017 04:28 AM
11-10-2017 03:32 AM
Yes - that is my suggestion.
Sorry to hear that process is in the way of what works best from an engineering point of view.
02-16-2018 07:31 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide