Hi,

In the document i can find it shows Configuring Cable-Based Active/Standby Failover (PIX Security Appliance Only) using the failover cable. have u practically done connecting 2 asa using a cross cable?

please find the commands:

>>hostname(config-if)# ip address active_addr netmask standby standby_addr

say: ip address 10.10.10.1 255.255.255.240 standby 10.10.10.2 ()say this is for eth0/1)

>> failover link if_name phy_if

say: failover link failover eth0/2

>>failover interface ip if_name ip_addr mask standby ip_addr

say: failover interface ip failover 192.168.10.1 255.255.255.240 standby 192.168.10.2

>> hostname(config)# interface eth0/2

>> hostname(config-if)# no shutdown

>>failover

all these are on active one.

=============================================

Standby:

=============================================

hostname(config)# failover

hostname(config)# wr mem

Whether it will solve the purpose.

Rgds..Partha

Hello Partha,

Lets say you want to use ethernet0/1 for failover link. Connect e0/1 interfaces of both ASAs using

cross cable. Now you need to implement following commands-

On Primary ASA:

interface e0/1

no shutdown

failover lan unit primary

failover lan interface failover_link ethernet0/1

failover interface ip failover_link 192.168.10.1 255.255.255.240 standby 192.168.10.2

failover lan enable

failover

On Secondary ASA:

interface e0/1

no shutdown

failover lan unit secondary

failover lan interface failover_link ethernet0/1

failover interface ip failover_link 192.168.10.1 255.255.255.240 standby 192.168.10.2

failover lan enable

failover

Note: On ASAs there is no cable-based failover available. We need to configure LAN-based failover only.

Hope this helps.

Regards,

Vibhor.