cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
639
Views
0
Helpful
2
Replies

Have problem with ASA (Active/Standby)?

join_sn09
Level 1
Level 1

Dear All,

I would like to ask you about ASA 5510 (Active/Standby). i have two ASA 5510 and i did configuretion failover and it is working ( Active / Standby)

buy my issue that when primary donw, the standby unit up to primary but the primary came back the standby unit it not switch to standby (  i mean it still up ) . if i want to primary up i type command ( failover active ) on primary unit , so i don't want use manul command i want it auto.

Which command that make ASA failover when primary coma back?

as below is my configuration :

failover

failover lan unit primary

failover lan interface failover Ethernet0/3

failover key *****

failover replication http

failover interface ip failover 192.168.1.1 255.255.255.0 standby 192.168.1.2

failover

failover lan unit secondary

failover lan interface failover Ethernet0/3

failover key *****

failover replication http

failover interface ip failover 192.168.1.1 255.255.255.0 standby 192.168.1.2

this status when (Active/Standby)

Best Regards,

Join

2 Replies 2

mvsheik123
Level 7
Level 7

Hi,

This is the normal behaviour. There is no 'preempt' config for switchover if the former active unit come online. It will be the new standby. Here is more info on active state...

The active unit is determined by these:

    1.If a unit boots and detects a peer already operative as active, it becomes the standby unit.

   

    2. If a unit boots and does not detect a peer, it becomes the active unit.

    3. If both units boot simultaneously, the primary unit becomes the active unit, and the secondary unit becomes the standby unit.

hth

MS

EDIT: I guess the 'preempt' feature available in multi context mode configs. Please check the docs if that applies to your ASA cluster.

Julio Carvajal
VIP Alumni
VIP Alumni

Hello,

As Mv said 

ASA Active/Standby failover does not support preemption.

Only ASA Active/Active failover or multicontext mode supports preempt when configured under failover group....

Regards,

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
Review Cisco Networking for a $25 gift card