Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
624
Views
0
Helpful
3
Replies

ASA 5545x's - Active/Standby 9.5(2) - HTTP commands not synching

steigja
Level 3
Level 3

‎02-17-2016 11:23 AM - edited ‎03-12-2019 12:19 AM

Hello All,

I have a very strange issue with redundancy between two 5545X's.  Failover is working fine but the only thing is that the "http" commands do not synch from the active to the standby.  These are the commands for ASDM access, such as "http 0.0.0.0 0.0.0.0 outside".  When I enter this command on the Primary and then do a "failover exec standby show run" I do not see it in the show run.  I can enter other commands such as "ssh 0.0.0.0 0.0.0.0 management", which will show up on the standby.  I have tried rebuilding the standby by defaulting its config then readding it as a standby device, the config all synchs except for those http commands.  The reason why I discovered this is because a users couldnt not login to ASDM after we failed over.  Also If I do failover, and then add the command and it will stick on the standby.  Also if I do a "write standby", it will delete the "http" commands from the standby.  It like the active just doesnt want to sync those "http" commands, has anyone seen this behavior before?  I did open a TAC case.  Thanks

Jason

Labels:
0 Helpful
3 Replies 3

Philip D'Ath
VIP Alumni
VIP Alumni

‎02-17-2016 02:20 PM

9.5(2) is bleeding new.  It will be a software bug.

HOWEVER, let me be the first discourage allowing remote management access from anywhere on the Internet.  Please at least limit it to known IP addresses.

0 Helpful

steigja
Level 3
Level 3
In response to Philip D'Ath

‎02-25-2016 06:20 AM

Philip,

      Thanks, yes I have been doing this for testing pourposes.  We will limit it. I have a TAC case open and they are looking into it.  I also assume it a bug.  Thanks

Jason

0 Helpful

ispatel
Level 1
Level 1
In response to steigja

‎02-25-2016 07:27 AM

It looks like you are hitting following defect.

https://tools.cisco.com/bugsearch/bug/CSCuy45475/?reffering_site=dumpcr

You need to enable standby IP address on interface as a workaround.

Thanks,
Ishan
Please remember to select a correct answer and rate helpful posts

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card