Buy or Renew
Buy or Renew
Meraki Community is live! Welcome Meraki Members! Learn more here.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1315
Views
0
Helpful
6
Replies

ASA 8.3 failover problem

rashad_cisco
Frequent Visitor
Frequent Visitor

‎03-10-2011 03:17 AM - edited ‎03-11-2019 01:04 PM

Hi dears,
recently I have configured active/standby configuration on cisco ASA 8.3. It worked 2-3 day normaly without any problem. Next day I have noticed that active/standby configuration not functioning as expected. Active unit was not saw the standby unit, each of them worked as stand alone unit. It is happened periodically.  I changed cables between ports, connect ASAs through vlan , but it didnt help. I think there is some bugs in ASA 8.3 regarding active/standby config. The active/standby config is shown below:

Primary:

failover lan unit primary
failover lan interface FAILOVER g0/3
failover interface ip FAILOVER 172.24.15.1 255.255.255.0 standby 172.24.15.2
interface g0/3
no shut
failover link FAILOVER
failover

Secondary:

failover lan interface FAILOVER g0/3
failover interface ip FAILOVER 172.24.15.1 255.255.255.0 standby 172.24.15.2
interface g0/3
no shut
failover lan unit secondary
failover

Did anybody faced with such type problem? and how to resolve it ?

Thank you in advance,

BR,
Rashad

Labels:
0 Helpful
6 Replies 6

PAUL GILBERT ARIAS
Level 11
Level 11

‎03-10-2011 04:36 AM

I don't see the failover link configured. If you do have it then have you checked your logs or have you tried using debugs for failover?

Sent from Cisco Technical Support iPhone App

0 Helpful

rashad_cisco
Frequent Visitor
Frequent Visitor
In response to PAUL GILBERT ARIAS

‎03-10-2011 04:49 AM

Hi Paul,

Thank you for your reply. In primary unit you can see the failover link configuration:

Primary:

failover lan unit primary

failover lan interface FAILOVER g0/3

failover interface ip FAILOVER 172.24.15.1 255.255.255.0 standby 172.24.15.2

interface g0/3

no shut

failover link FAILOVER -----> failover link configuration

BR,

Rashad

0 Helpful

PAUL GILBERT ARIAS
Level 11
Level 11
In response to rashad_cisco

‎03-10-2011 05:19 AM

And on your secondary unit?

Sent from Cisco Technical Support iPhone App

0 Helpful

rashad_cisco
Frequent Visitor
Frequent Visitor
In response to PAUL GILBERT ARIAS

‎03-10-2011 05:41 AM

Paul,

I referenced to cisco document http://www.cisco.com/en/US/partner/products/hw/vpndevc/ps2030/products_configuration_example09186a00807dac5f.shtml.

In this document they dont mentioned about  "failover link" on the second unit. I think anywhere secondory unit will be copied this command from active unit.

Is it mondatary to issue  the "failover link" command on the secondary unit ?

BR,

Rashad

0 Helpful

PAUL GILBERT ARIAS
Level 11
Level 11
In response to rashad_cisco

‎03-10-2011 06:06 AM

failover link is used for stateful failover. I always add that line manually on both units. If you do a show run failover on the secondary unit and you don't see that line it means it didn't got copied from the primary unit or that the configurations are not synchronized.

0 Helpful

rashad_cisco
Frequent Visitor
Frequent Visitor
In response to PAUL GILBERT ARIAS

‎03-17-2011 11:07 PM

Hi Paul,

Thank you for your advise, the "failover link" command on the second unit helped.

BR,

Rashad

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card