Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
340
Views
0
Helpful
1
Replies

Firewall sync between datacentres

Thomas McLean
Level 1
Level 1

‎06-20-2013 03:21 AM - edited ‎03-11-2019 07:00 PM

Chaps,

I have two data centres in HA mode - one active and one standby - if the active was to go offline due to a failure we would like the standby DC to take over as the active DC for the period of failure.

Now to do this we need to keep everything in sync - this includes the firewall rules - is there a way to replicate the firewall rules from DC 1 to DC 2 automagically? At the moment we plan to do this manually and would prefer it obviosuly if this could be done in such a way that we wouldn't have to do repetitive work.

Any help in this situation would be appreciated - i've done a wee diagram that reflects our setup in a simple mans head.

Thanks,

Thomas.

Labels:
Preview file
33 KB
0 Helpful
1 Reply 1

andyjames
Level 1
Level 1

‎06-20-2013 04:05 AM

Hi,

The high end models can be clustered for load balancing but you lose some functionality that you might still want to use.

There is the security manager that might be better suited as you can deploy global profiles across pairs so you only change the rule once and it changes at all locations - http://www.cisco.com/en/US/prod/collateral/vpndevc/ps5739/ps6498/data_sheet_c78-727090.html

HTH, Andy.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card