10-29-2018 12:12 AM - edited 02-21-2020 08:24 AM
Hi,
We have ASA pair configured with Act/Stby. failover cables are connected via a switch as both units are located in two different locations. We have one issue when primary unit become active and reload the same box (primary unit) get always comes back as active unit. There is no preempt configured as this is single context.
As we know in normal situation when the active unit reloaded and it comes up it should remains as standby unless its configured preempt in multi-context scenario. However when we reboot the secondary standby unit, it remains as standby when it come up.
One thing we know as best practice the switch used for failover connectivity should not share with other data communication ports, but in our case we do not have a dedicated switch for failover connectivity alone.
Can someone figure out why the active unit become active again when it comes up after reboot.?
Thanks..
10-29-2018 01:27 PM
A typical reason for this behavior is when the secondary unit has less functional interfaces compared to the primary unit. Have you checked that both units are equally healthy?
11-03-2018 03:26 PM
Perhaps something to consider:
The LAN Failover link only requires a dedicated VLAN as opposed to a switch.
Regards,
Azam
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide