Buy or Renew
Buy or Renew
NEW! Stay up-to-date on Cisco Secure Access: Software Release Notes and Announcements
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
411
Views
0
Helpful
0
Replies

configure cisco 2901 routers with Zone Based Firewall and High Availability Pair with Transparent mode

thilinar8
Level 1
Level 1

‎08-22-2016 08:31 PM - edited ‎03-12-2019 01:10 AM

I am trying to configure cisco 2901 routers with Zone Based Firewall and High Availability Pair with Transparent mode

i followed Cisco guidance, but its not connecting: when i run sh redundancy, its showing communication down:

redundancy
 application redundancy
  group 1
   name RG01
   priority 200
   timers delay 0
   control GigabitEthernet0/1/1 protocol 1
   data GigabitEthernet0/1/2
   asymmetric-routing interface GigabitEthernet0/1/3

But, when i use

redundancy inter-device
 scheme standby StdGrp01

ipc zone default
 association 1
  no shutdown
  protocol sctp
   local-port 5000
    local-ip 10.0.0.252
    retransmit-timeout 300 10000
    path-retransmit 10
    assoc-retransmit 10
   remote-port 5000
    remote-ip 10.0.0.253

interface Vlan10
 description $FW_INSIDE$
 ip address 10.0.0.252 255.255.255.0
 ip nat inside
 ip virtual-reassembly in
 zone-member security in-zone
 standby 1 ip 10.0.0.254
 standby 1 priority 60
 standby 1 name StdGrp01

its working : But, when connecting to single switch, its giving mac flap error:

can anyone help me to fix this issue:?

Note: ios version 15.2 (3) T4

1 person had this problem
Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card