Cisco Community
English
Register
ANNOUNCEMENT - Security Restructure has finished!. Email and Web Notifications are ON now - LEARN MORE
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
182
Views
5
Helpful
2
Replies
charleseapen
charleseapen Beginner
Beginner
‎02-14-2020 01:30 AM
‎02-14-2020 01:30 AM

NGIPS high availability

hi guys,

slight confusion on Cisco NGIPS high availability and clustering.

  1. My devices are Firepower 4125 with fxos and planning to run FTD on it.
  2. Total 4 devices - 2 in DC and 2 in DR
  3. Can i do Active-Passive failover with devices
  4. some documentations mentioned, HA not possible for NGIPS devices only clustering. Is that truuuuuuuue?
  5. How many devices can be added to cluster?
  6. Is it like FXOS can be clustered, but not FTD ???

 

Can someone please help in sorting out the confusions.

 

Labels:
Everyone's tags (6)
0 Helpful
Reply
2 REPLIES 2
Highlighted
Muhammad Awais Khan
Muhammad Awais Khan Enthusiast
Enthusiast
‎02-14-2020 01:59 AM
‎02-14-2020 01:59 AM

Re: NGIPS high availability

Hi,

 

You can configure Active/Standby Failover with your 4125. The document mentioned that HA is not supported when you configured clustering but without clustering you can configure active/standby Failover.

 

Configuraiton guide 6.5 for active/standby failover:

 

https://www.cisco.com/c/en/us/td/docs/security/firepower/650/configuration/guide/fpmc-config-guide-v65/high_availability_for_firepower_threat_defense.html

 

 

But if you want to have clustering or active/active you can still do that. Firepower 4100 series—Supported for up to 6 units using inter-chassis clustering. 

 

So to answer your question, FTD supports active/standby configuraiton and clustering also but both cannot be mixed.

Reply
Highlighted
Muhammad Awais Khan
Muhammad Awais Khan Enthusiast
Enthusiast
‎02-14-2020 02:20 AM
‎02-14-2020 02:20 AM

Re: NGIPS high availability

just to add to my prevous response, within the clustering there is HA support in a way that both appliances interfaces are active and if one went down other device's link will remain active

0 Helpful
Reply
Latest Contents
CPP - support Information Page settings
Created by adrianmadley on 02-28-2020 06:37 AM
0
0
0
0
Struggling to the answer find in cisco doc'swe're wishing  to replace the hashed out values of the[support Information Page settings]   in the [client provisioning portal] cant see them in the [portal page customization] we config... view more
Multiple Vulnerabilities in Cisco FXOS and NX-OS Software
Created by Omar Santos on 02-26-2020 02:18 PM
0
5
0
5
On February 24, 2020, the Cisco PSIRT published eleven (11) vulnerabilities in Cisco FXOS and NX-OS Software. Eight (8) out of the eleven (11) vulnerabilities were found by our internal security and engineering teams, two were found by TAC during the trou... view more
NGFW
Created by starsulaiman21266 on 02-25-2020 01:58 AM
1
0
1
0
Hello All, i have two vm firepower as HA and they are working fine as HA the traffics going through fin but there is a red mark shows on the HA, can someone tell me what does that mean please? This only appears on the HA not in individual device... view more
Meet the Authors FAQ´s - A Cybersecurity Deep Dive with Omar...
Created by ciscomoderator on 02-24-2020 05:28 PM
0
0
0
0
  This event had place on Thursday 23rd, January at 10hrs PDT  Introduction   Featured Author Omar Santos is an active member of the cyber security community, where he leads several industry-wide initiatives and standards bodies. H... view more
Get the Cisco 2020 CISO Benchmark Report
Created by Kelli Glass on 02-24-2020 08:16 AM
0
0
0
0
Securing What's Now and What's Next. With our annual global survey of 2,800 security leaders, we dove deep to compile key benchmark statistics. The 2020 CISO Benchmark Report provides valuable takeaways and data on the most pressing cybersecurity to... view more
CreatePlease to create content
Discussion
Blog
Document
Video