cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
987
Views
5
Helpful
6
Replies

FMC 4700 Cluster

KayaaKashyap
Level 1
Level 1

1) Can we implement FMC in cluster? 

2) Can we deploy FMC in Active/Active HA mode?

2 Accepted Solutions

Accepted Solutions

Sorry it support only active/standby 

From cisco doc.

The FMCs support Active/Standby high availability where one appliance is the active unit and manages devices. The standby unit does not actively manage devices. The active unit writes configuration data into a data store and replicates data for both units, using synchronization where necessary to share some information with the standby unit.

View solution in original post

You have 2 Option 

1. Either keep them separate and manage then based on the location using single FMC

2. Make them Active / Standby so - all the FTD will be managed by HA FMC

Same concept Standby means wait for Active to Fail so Standby become active.

EDIT

you can also consider cloud :

https://www.cisco.com/c/en/us/support/docs/security/defense-orchestrator/218171-deploy-a-cloud-delivered-fmc-in-cdo.html

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

View solution in original post

6 Replies 6

Sorry it support only active/standby 

From cisco doc.

The FMCs support Active/Standby high availability where one appliance is the active unit and manages devices. The standby unit does not actively manage devices. The active unit writes configuration data into a data store and replicates data for both units, using synchronization where necessary to share some information with the standby unit.

Thank you so much for quick answer. Please help me to get solution for below:

Suppose I have 6 FTDs and 2 FMCs on different locations.

Is it possible to deploy as below: 

FTD 1, FTD2, FTD3 configured on ------- FMC 1 

FTD 4, FTD 5, FTD 6 configured on ------ FMC 2.

Is there any possibility to configure 

FMC 2 as standby for FTD 1, FTD 2, FTD 3 and

FMC 1 as standby for FTD 4, FTD 5, FTD 6

You meaning load mgmt between two fmc.

I will check.

MHM

Yes. I will wait for your reply,

I am not able to find any document related to this scenario. Thanks

You have 2 Option 

1. Either keep them separate and manage then based on the location using single FMC

2. Make them Active / Standby so - all the FTD will be managed by HA FMC

Same concept Standby means wait for Active to Fail so Standby become active.

EDIT

you can also consider cloud :

https://www.cisco.com/c/en/us/support/docs/security/defense-orchestrator/218171-deploy-a-cloud-delivered-fmc-in-cdo.html

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

balaji.bandi
Hall of Fame
Hall of Fame

check the document  for the requirement of HA :

https://www.cisco.com/c/en/us/td/docs/security/secure-firewall/management-center/admin/710/management-center-admin-71/system-ha.html

what is the need of Active/Actice - this is FMC Management tool only manages the devices.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Review Cisco Networking for a $25 gift card