10-08-2009 01:08 AM - edited 03-11-2019 09:24 AM
Hi,
does the ASA 5505 do any kind of stateful failover?
The cisco website says no, but i've had a salesman tell me it does.
I notice the 5510 can do it with lisenced software... is this correct?
Sorry, not much experience with ASA's
Cheers
Mario
Solved! Go to Solution.
10-08-2009 07:18 AM
Correct - the 5520 upwards supports stateful failvoer.
10-08-2009 01:20 AM
Please supply the cisco page that states the ASA does not perform statefull failover, as this is not 100% true - there are 1 or 2 situations where the ASA does not perform statefull failover.
See the below url:-
10-08-2009 02:45 AM
Thanks for the reply,
so if the ASA's have version 7.x or above, you can configure them as you would with 2 PIX's?
with a serial cable as the failover interface?
I breifly drafted through and probably not taking it all in properly.
Thanks again!
Mario
10-08-2009 02:55 AM
OK - here's the thing, the serial cable ONLY carries failover hello's and config replication etc.
If you want statefull failover you need to have a LAN connection between the 2 devices.
HTH>
10-08-2009 03:56 AM
right OK...
thanks for the help Andrew, much appreciated.
10-08-2009 03:58 AM
Ooops, forgot to ask... are there any special software/license requirements. Or would this be possible out of the box?
10-08-2009 04:37 AM
You need to have the failover option in the license on both units.
10-08-2009 05:00 AM
Hi Andrew,
thanks very much for the info.
Do you know what the below quote means from the article? not too familiar with different contexts.
Note: VPN failover is not supported on units that run in multiple context mode as VPN is not supported in multiple context. VPN failover is available only for Active/Standby Failover configurations in single context configurations.
Thanks!
10-08-2009 05:09 AM
If you do not know what contexts are, you are not using them - you don't need to worry about them.
10-08-2009 05:57 AM
lol, OK fair enough...
I am going to start comparing the 2 models... 5505's and 5510's.
Thanks for your help so far.
10-08-2009 05:59 AM
;o)
10-08-2009 06:32 AM
Hi Andrew,
i've found the page that advises thatr the feature is not available on the 5505...
let me know what you think...
http://www.cisco.com/en/US/products/ps6120/prod_models_comparison.html
Thanks
10-08-2009 06:48 AM
The 5505 is for small sites, if you want failover you need the 5520 and above.
10-08-2009 07:14 AM
ok, now i'm confused...
so the 5505 & 5510 units do not apply to the URL that you posted right at the beggining of this conversation, no?
in general terms, for stateful failover, we need to be looking at 5520??
Mario
10-08-2009 07:18 AM
Correct - the 5520 upwards supports stateful failvoer.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide