Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
2520
Views
0
Helpful
3
Replies

How to connect Cisco Nexus Core switch to Firepower 2110 in HA

GalaticWarrior51
Level 1
Level 1

‎10-01-2020 10:05 AM

I am having an issue with Connect my two Nexus Core switches to Firepower 2110 in HA. I have connectivity to the active firewall but I am not sure how I connect the standby firepower to the nexus switches. I different options ( L3 ports or VPC) and all connectivity to the active firewall works but it connectivity to the standby that is confusing me, especially it needs a standby ip addresses. 

 

 

any help or direction would be appreciated

0 Helpful
3 Replies 3

Rob Ingram
VIP
VIP

‎10-01-2020 11:23 AM

Hi @GalaticWarrior51 

If you use the FTD in an Active/Standby failover deployment, then you need to create separate EtherChannels on the switches in the VSS/vPC, one for each FTD. On each FTD, a single EtherChannel connects to both switches.

 

See Figure 2. Active/Standby Failover and VSS/vPC 

https://www.cisco.com/c/en/us/td/docs/security/firepower/640/configuration/guide/fpmc-config-guide-v64/regular_firewall_interfaces_for_firepower_threat_defense.html#id_90517

 

HTH

0 Helpful

GalaticWarrior51
Level 1
Level 1
In response to Rob Ingram

‎10-01-2020 01:34 PM

Now would I make those Port Channel on the Nexus, Layer 3 Port Channels since I need an IP address to connect to the firepower ports?

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame

‎10-01-2020 11:54 AM

how is your nexus configured in vPC mode, are you looking clustering?  or just Active / Standby deployment? you need to be very carefull with vPC if that is not clustering.

 

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Review Cisco Networking for a $25 gift card
Top