Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1031
Views
0
Helpful
2
Replies

Change to Multiple Mode- FWSM

Go to solution
bcarroll
Level 1
Level 1

‎08-01-2007 07:06 AM - edited ‎03-11-2019 03:52 AM

I have a failover pair in single mode. What would be the best process to move to multiple mode and keep my failover as intact as possible. Any thoughts on the best process to move to multi mode?

Thanks in advance!

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Patrick Iseli
Level 7
Level 7

‎08-02-2007 06:18 AM

Looks like nowbody likes to answer your question.

I suppose you have a Inter Chassis Failover ?

http://www.cisco.com/en/US/docs/security/fwsm/fwsm23/configuration/guide/failover.html#wp1039005

Note: It is not possible without a short out of service to change from single to multi context mode.

There is a partial guide on multi mode setup:

http://www.cisco.com/en/US/docs/security/fwsm/fwsm23/configuration/guide/context.html#wp1051132

Procedure:

1. Save/backup your configurations in a text file !

2.) Remove original standby Switch (FWSM) from the network. The standby Switch/FWSM should not see any more the primary one.

3.) configure multi mode on the standby unit and reload the FWSM.

4.) Configure a new firewall context and copy paste your old config. Reconfigure the system context and failover settings and create the admin context if needed.

http://www.cisco.com/en/US/docs/security/fwsm/fwsm23/configuration/guide/context.html#wp1096339

5.) Now you need to switch the Switches.

Remove the primary switch from the network and connect the new configured standby one into the network.

6.) configure multi mode on the primary unit and reload the FWSM.

4.) Configure the old primary FWSM with the basic Failover settings.

http://www.cisco.com/en/US/docs/security/fwsm/fwsm23/configuration/guide/failover.html

5.) Connect primary firewall on the network.

The old stanby FWSM will now synchronise automaticly the config of the contexts should be identical.

sincerely

Patrick

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Patrick Iseli
Level 7
Level 7

‎08-02-2007 06:18 AM

Looks like nowbody likes to answer your question.

I suppose you have a Inter Chassis Failover ?

http://www.cisco.com/en/US/docs/security/fwsm/fwsm23/configuration/guide/failover.html#wp1039005

Note: It is not possible without a short out of service to change from single to multi context mode.

There is a partial guide on multi mode setup:

http://www.cisco.com/en/US/docs/security/fwsm/fwsm23/configuration/guide/context.html#wp1051132

Procedure:

1. Save/backup your configurations in a text file !

2.) Remove original standby Switch (FWSM) from the network. The standby Switch/FWSM should not see any more the primary one.

3.) configure multi mode on the standby unit and reload the FWSM.

4.) Configure a new firewall context and copy paste your old config. Reconfigure the system context and failover settings and create the admin context if needed.

http://www.cisco.com/en/US/docs/security/fwsm/fwsm23/configuration/guide/context.html#wp1096339

5.) Now you need to switch the Switches.

Remove the primary switch from the network and connect the new configured standby one into the network.

6.) configure multi mode on the primary unit and reload the FWSM.

4.) Configure the old primary FWSM with the basic Failover settings.

http://www.cisco.com/en/US/docs/security/fwsm/fwsm23/configuration/guide/failover.html

5.) Connect primary firewall on the network.

The old stanby FWSM will now synchronise automaticly the config of the contexts should be identical.

sincerely

Patrick

0 Helpful

Go to solution
bcarroll
Level 1
Level 1
In response to Patrick Iseli

‎08-02-2007 06:47 AM

Thanks Partick! This will do!

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card