Cisco Community
English
Register
We are launching a new events program "Support Talks" to help you support your deployments as a pro - LEARN MORE
<
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

740
Views
0
Helpful
0
Replies
Highlighted
hebergus44
Beginner
Beginner
‎07-23-2013 04:17 AM
‎07-23-2013 04:17 AM

IPS Appliance (4500 and 4300) interface redundancy

Hello all,

      

Around interface redundancy (A.K.A. interface bonding): our design actually includes a catalyst switch and a couple of IPS appliances 4500, an etherchannel configured with 2 SPF+ cables, one to each IPS. As you might know this are 10Gbps links. This as you see has a layer of resilience by having 2 IPS etherchanneled into the Catalyst.

Now, if one cable fails or interface fails, can we configure any sort of interface bonding or semi-automatic setup with a extra link (in standby or not active) given that we might have spare 10Gbps ports on the switch AND on the IPS? Is there a best practise or something around this? I think the ASA firewalls have a command called "member-interface" which allow this type of redundancy but I think I have not seen this on the CR for the IPS OS. ( see http://yurisk.info/2010/08/23/redundant-interfaces-in-cisco-asa/)

      

Cheers!

Heber

Labels:
0 Helpful
0 REPLIES 0
Latest Contents
CCIE Security and Practical Applications in Today’s Network:...
Created by Cisco Moderador on 10-30-2020 05:01 PM
0
0
0
0
Meet the Authors Video - CCIE Security and Practical Applications in Today’s Network: Zero Trust (Live event – Thursday, 29th, 2020 at 10:00 a.m. Pacific / 1:00 p.m. Eastern / 6:00 p.m. Paris) This event had place on Thursday 29th, October 2020 at 10hrs ... view more
ISE Security Best Practices (Hardening)
Created by Jason Kunst on 10-30-2020 02:02 AM
16
64
16
64
What is covered in this document? This document covers information regarding security, hardening and testing of Identity Services Engine (ISE). Information included such as TLS & Software versions, our testing processes, how is it hardened, upgrade... view more
CCIE Security and Practical Applications in Today’s Network:...
Created by Cisco Moderador on 10-29-2020 06:16 PM
0
0
0
0
CCIE Security and Practical Applications in Today’s Network: Zero Trust This event had place on Thursday 29th, October at 10hrs PDT  Introduction Featured Authors Mason Harris is a Solutions Architect for Cisco focusing on cloud architectures with... view more
CCIE Security and Practical Applications in Today’s Network:...
Created by Cisco Moderador on 10-29-2020 12:40 PM
0
10
0
10
Meet the Authors Event - CCIE Security and Practical Applications in Today’s Network: Zero Trust (Live event – Thursday, 29th, 2020 at 10:00 a.m. Pacific / 1:00 p.m. Eastern / 6:00 p.m. Paris) This event had place on Thursday 29th, October 2020 at 10hrs P... view more
Get more with Firepower 6.6.1 – Cisco’s latest suggested rel...
Created by csaxena on 10-27-2020 03:28 PM
0
15
0
15
Get more with Firepower 6.6.1 – Cisco’s latest suggested release The latest suggested release for Firepower delivers a Modernized UI, faster eventing, improved usability, and compatibility with the Cisco SecureX platform   In September 2020, Cisco of... view more
Content for Community-Ad