Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
421
Views
0
Helpful
1
Replies

failover firewall

network770
Level 1
Level 1

‎05-05-2011 05:12 PM - edited ‎03-11-2019 01:30 PM

is it possible to introduce a failover firewall without dedicating a interface on each firewall for connecting the two.  we currently have one asa and want to add another one for failover but all interfaces are used, do we have any options? can we do stateful failover over the internal network and not have a cable going between the 2 firewalls?

i have never seen such a configuration and would love to see an example if possible at all

Labels:
0 Helpful
1 Reply 1

Roman Rodichev
Level 7
Level 7

‎05-05-2011 07:47 PM

you must have an interface dedicated for failover, but it doesn't need to be a physical interface, it could be a subinterface through a dedicated VLAN on your LAN. If you already have trunking on your internal interface, just setup another subinterface and a new vlan.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card