Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
941
Views
0
Helpful
1
Replies

ASA 5510 redudant interface

Go to solution
Namal Suranga
Level 1
Level 1

‎08-15-2012 10:23 AM - edited ‎03-11-2019 04:42 PM

I have configured redundant interface on ASA 5510

interface Redundant1

description *** INSIDES NETWORK ***

member-interface Ethernet0/1 (This is a 1000Mbps Port)

member-interface Ethernet0/2 (This one is 100Mbps)

no nameif

no security-level

no ip address

interface Redundant1.10

vlan 10

nameif inside

security-level 100

ip address 192.168.1.168 255.255.255.0

redundant-interface redundant 1 active-member ethernet 0/1

Interface Ethernet0/1 ---- Connected to --- Primary Core Switch Interface Gi0/30

Interface Ethernet0/1 ---- Connected to --- Secondary Core Switch Interface Gi0/30

Then... i issue following command and its OK!

ASA5510# show interface redundant 1 detail

Interface Redundant1 "", is up, line protocol is up

  Hardware is i82546GB rev03, BW 1000 Mbps, DLY 10 usec

        Auto-Duplex(Full-duplex), Auto-Speed(1000 Mbps)

        Input flow control is unsupported, output flow control is off

        Description: *** INSIDES NETWORK ***

        Available but not configured via nameif

        MAC address 7081.0570.e37d, MTU not set

        IP address unassigned

        8200483 packets input, 2109574889 bytes, 0 no buffer

        Received 99254 broadcasts, 0 runts, 0 giants

        0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort

        0 pause input, 0 resume input

        11878 L2 decode drops

        10309739 packets output, 9085407428 bytes, 0 underruns

        0 pause output, 0 resume output

        0 output errors, 0 collisions, 7 interface resets

        0 late collisions, 0 deferred

        0 input reset drops, 0 output reset drops, 0 tx hangs

        input queue (blocks free curr/low): hardware (510/249)

        output queue (blocks free curr/low): hardware (510/244)

  Topology Information:

        This interface, a , is connected

        with Ethernet0/0, a .

  Control Point Interface States:

        Interface number is 8

        Interface config status is active

        Interface state is active

  Redundancy Information:

        Member Ethernet0/1(Active), Ethernet0/2

        Last switchover at 13:54:02 IST Aug 15 2012

Then i have shutdown Primary core switch Gi0/30 Interface and Issued above command again

ASA5510# show interface redundant 1 detail

Interface Redundant1 "", is up, line protocol is up

  Hardware is i82546GB rev03, BW 100 Mbps, DLY 10 usec

        Auto-Duplex(Full-duplex), Auto-Speed(100 Mbps)

        Input flow control is unsupported, output flow control is off

        Description: *** INSIDES NETWORK ***

        Available but not configured via nameif

        MAC address 7081.0570.e37d, MTU not set

        IP address unassigned

        8176236 packets input, 2102449428 bytes, 0 no buffer

        Received 98539 broadcasts, 0 runts, 0 giants

        0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort

        0 pause input, 0 resume input

        11682 L2 decode drops

        10278568 packets output, 9060503327 bytes, 0 underruns

        0 pause output, 0 resume output

        0 output errors, 0 collisions, 4 interface resets

        0 late collisions, 0 deferred

        0 input reset drops, 0 output reset drops, 0 tx hangs

        input queue (blocks free curr/low): hardware (510/254)

        output queue (blocks free curr/low): hardware (510/255)

  Topology Information:

        This interface, a , is connected

        with Ethernet0/0, a .

  Control Point Interface States:

        Interface number is 8

        Interface config status is active

        Interface state is active

  Redundancy Information:

        Member Ethernet0/2(Active), Ethernet0/1

        Last switchover at 13:45:10 IST Aug 15 2012

It's tranferd corectly then i no shut and back to normal Primary core switch Gi0/30 Interface again, BUT  redundant interface no revert back.

I issued this command again BW remain 100Mbps

ASA5510# show interface redundant 1 detail

Interface Redundant1 "", is up, line protocol is up

  Hardware is i82546GB rev03, BW 100 Mbps, DLY 10 usec

        Auto-Duplex(Full-duplex), Auto-Speed(100 Mbps)

        Input flow control is unsupported, output flow control is off

        Description: *** INSIDES NETWORK ***

        Available but not configured via nameif

        MAC address 7081.0570.e37d, MTU not set

        IP address unassigned

        8176236 packets input, 2102449428 bytes, 0 no buffer

        Received 98539 broadcasts, 0 runts, 0 giants

        0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort

        0 pause input, 0 resume input

        11682 L2 decode drops

        10278568 packets output, 9060503327 bytes, 0 underruns

        0 pause output, 0 resume output

        0 output errors, 0 collisions, 4 interface resets

        0 late collisions, 0 deferred

        0 input reset drops, 0 output reset drops, 0 tx hangs

        input queue (blocks free curr/low): hardware (510/254)

        output queue (blocks free curr/low): hardware (510/255)

  Topology Information:

        This interface, a , is connected

        with Ethernet0/0, a .

  Control Point Interface States:

        Interface number is 8

        Interface config status is active

        Interface state is active

  Redundancy Information:

        Member Ethernet0/2(Active), Ethernet0/1

        Last switchover at 13:45:10 IST Aug 15 2012

I did manualy shut down and no shut the secondary core switch interface Gi0/30 Its changed correctly to 1000Mbps .

pls tell some one why it's not automatically transer active interface and speed ???

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
zujalal
Cisco Employee
Cisco Employee

‎08-15-2012 04:59 PM

I remember that being there by design. Fail back or Preempt was not supported in case of Redundant interfaces and is actually not a good idea in terms of stability. You dont want the interface failover to happen again when the active interface comes back up. In order to force the 1000Mbps interface to be active, you can manually do so by the command 'redundant-interface 1 active

Hope that Helps

Zubair

View solution in original post

0 Helpful
1 Reply 1

Go to solution
zujalal
Cisco Employee
Cisco Employee

‎08-15-2012 04:59 PM

I remember that being there by design. Fail back or Preempt was not supported in case of Redundant interfaces and is actually not a good idea in terms of stability. You dont want the interface failover to happen again when the active interface comes back up. In order to force the 1000Mbps interface to be active, you can manually do so by the command 'redundant-interface 1 active

Hope that Helps

Zubair

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card