Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
4851
Views
0
Helpful
1
Replies

ASA Failover issue

saxenanitesh8522
Level 4
Level 4

‎08-23-2012 05:12 AM - edited ‎03-11-2019 04:45 PM

Hi,

I have configured Cisco ASA in Active/Standby mode. This firewall has been in production for more than 2 years and recently, there was a issue where both firewall went down. The reason was IFC Failure which was showing in show failover state and show failover history was showing "Inferface Failure"

I have gone through many documents but it doesnt clearly say what does it mean? This two sets have been in production for long time and suddenly this issue coming up is not making sense.

If some can help and guide it will be great.

Thanks,

Nitesh

Labels:
0 Helpful
1 Reply 1

Julio Carvajal
VIP Alumni
VIP Alumni

‎08-23-2012 11:40 AM

Hello Nitesh,

As you know ASA failover is based on the exchange of hello packets on the interfaces being monitored so both ASA's can detect if one of the devices is down.

Now by default after an interface is down the mate will stop reciving hello packets from that peer and it will trigger failover.

In your case that is what happen, the status on one of the interfaces being monitored went down and failover was triggered.

Regards,

Rate all the helpful posts

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card