07-19-2022 02:57 PM
I have 2 ASA 5525's in a HA pair. I need to move them to a new switch. I am planning on moving all the interfaces of the standby FW then make sure failover is re-established. I will then failover to the standby and move the last of the interfaces. Is there anything that I may be forgetting here.
Solved! Go to Solution.
07-19-2022 08:47 PM
that process is OK. but plan the migration process correctly. when you remove standby ASA and connect to new switch, standby switch loos connectivity with primary ASA.so standby will become primary for new switch. if you have connectivity between old switch and new switch incase, there will be 2 primary ASAs and can occur disruption.
also make sure to clear ARP in ASAs after moving to new switches to immediate traffic transfer with new switch. sometimes (i experienced 2 times) ASA will keep old MACs till timeout the table.
also if you have any LACP channels, prepare new switch with that and make sure they are working properly.
07-19-2022 08:47 PM
that process is OK. but plan the migration process correctly. when you remove standby ASA and connect to new switch, standby switch loos connectivity with primary ASA.so standby will become primary for new switch. if you have connectivity between old switch and new switch incase, there will be 2 primary ASAs and can occur disruption.
also make sure to clear ARP in ASAs after moving to new switches to immediate traffic transfer with new switch. sometimes (i experienced 2 times) ASA will keep old MACs till timeout the table.
also if you have any LACP channels, prepare new switch with that and make sure they are working properly.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide