Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
211
Views
0
Helpful
1
Replies

NAT and Failover on ASA 5540 Firewall

thomas.fayet
Level 1
Level 1

‎09-11-2014 10:01 AM - edited ‎03-11-2019 09:44 PM

Dear Community,

We have a cluster of ASA 5540 working in a primary/standby configuration. 

We are  using source-Nat on this cluster to NAT some multicast streams received from the outside interface to an inside subnet.

Unfortunately, we have an issue when doing the failover between the active and the standby firewall; the multicast stream stops and never starts again.

 

I would like to know how the NAT function being handled on the ASA cluster , is all the traffic/NAT being handled by the primary firewalls only ? 

When we do the failover , my initial though was that In an Active/Passive cluster the other firewall should have all the NAT sessions synched and should take over all IPs and traffic flows.

 

Hence , Failover should not have big impact on the traffic.

 

Could someone add the lights on those assumptions ? 

 

thanks and best regards

T

Labels:
0 Helpful
1 Reply 1

thomas.fayet
Level 1
Level 1

‎09-11-2014 01:11 PM

No one ? :(

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card