Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
977
Views
0
Helpful
1
Replies

ASA5500-SSP-IPS

charming904
Level 1
Level 1

‎09-23-2011 06:43 AM - edited ‎03-10-2019 05:29 AM

How does the IPS integrated module works in cisco ASA5500 with Active/Standby failover.

Do we need to configure anything for IPS Failover as well or it is configured automatically as part of ASA Failover conifguraiton.

Labels:
0 Helpful
1 Reply 1

rhermes
Level 7
Level 7

‎09-23-2011 12:26 PM

Charm -

The Cisco IPS sensors do not support failover in the same way a firewall does. They do not maintain any sort of synchronization between the sensors. The IPS sensors operate independently. If a TCP session is in progress with it's traffic passing thru one IPS sensor when a failover occurs, the secondary ASA's IPS Sensor will not know the state of that TCP session, since it did not see it being created. This will lead to some loss of signature detection for sessions in  place when a failover occurs.

You will need to manually make sure both sensors have the same configuration, with the exception of the sensor's management IP address.

- Bob

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card