Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
550
Views
0
Helpful
2
Replies

asa active/active questions

Go to solution
cfajardo1_2
Level 1
Level 1

‎07-22-2006 01:44 AM - edited ‎03-10-2019 03:07 AM

if i have asa's configured as active/active;

1. Is this situation treated as one? I mean can i manage this only with IDM?

2. The 5520 can have 130,000 connections. If i am using 2 of this which is config active/active, can i say that am having 130,000X2=260,000 connections?

thanks.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
leon.mflai
Level 1
Level 1

‎07-23-2006 02:34 AM

1. In ASA, Active/Active can only be acrhived when both ASA is in Multiple Context Mode (Security Context). Multiple Context logically divides the ASA into multiple virtual firewall. You can refer to following configuration example.

http://www.cisco.com/en/US/products/ps6120/products_configuration_guide_chapter09186a008063b316.html#wp1035787

In your case, you need to create 2 context in each ASA, say Context-A and Context-B. In ASA-1, it should be active for Context-A and standby for Context-B. While in ASA-2, it should be standby in Context-A and active for Context-B. You should be have seperate set of configuration for each Context.

To manage the configuration, you can use ASDM.

2. I am sorry, I don't know that

View solution in original post

0 Helpful
2 Replies 2

Go to solution
leon.mflai
Level 1
Level 1

‎07-23-2006 02:34 AM

1. In ASA, Active/Active can only be acrhived when both ASA is in Multiple Context Mode (Security Context). Multiple Context logically divides the ASA into multiple virtual firewall. You can refer to following configuration example.

http://www.cisco.com/en/US/products/ps6120/products_configuration_guide_chapter09186a008063b316.html#wp1035787

In your case, you need to create 2 context in each ASA, say Context-A and Context-B. In ASA-1, it should be active for Context-A and standby for Context-B. While in ASA-2, it should be standby in Context-A and active for Context-B. You should be have seperate set of configuration for each Context.

To manage the configuration, you can use ASDM.

2. I am sorry, I don't know that

0 Helpful

Go to solution
lmilher_2
Level 1
Level 1
In response to leon.mflai

‎08-30-2006 06:46 AM

Perfect !!!!

About conns... you can have 260.000 conns when two ASAs are actives and running. if one fail, then all traffic pass by one ASA, in this moment the max conns are 130.000.

Take care.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card