Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
495
Views
9
Helpful
3
Replies

PIX failover config

ciscoforum
Level 1
Level 1

‎08-01-2006 09:23 AM - edited ‎02-21-2020 01:05 AM

Is the standby address on the interface pingable in normal mode (Normal mode meaning primary is still active and 2nd one is still in standby mode)

The reason to ask this is one of our customer configured the standby address which is used for another device. I am thinking this is not right. But just need to confirm this. Thanks

0 Helpful
3 Replies 3

Fernando_Meza
Level 7
Level 7

‎08-01-2006 04:52 PM

Hi ... the standby interfaces is only used for failover communications it can't be pinged however you should get an available IP instead of using the same .. this is mainly to keep your set up clean.

I hope it helps ... please rate it if it does !!!

jcalvert
Level 1
Level 1

‎08-04-2006 05:59 AM

The standby address should be unique to the failover firewall. You should not use an IP address already in use by another device. And yes, it is possible to ping the standby ip address, if icmp is allowed on that interface. i.e. "icmp permit [] "

You can even login to the secondary firewall using the failover IP address, but do not change the configuration. It's useful for when you want to intentionally failover the firewall. (Login to the secondary and run "failover active".)

Jeff

Fernando_Meza
Level 7
Level 7
In response to jcalvert

‎08-05-2006 07:15 PM

Agree with Jeff I have got mixed up with my previous post ... please disregard the "it can't be pinged" part of it .. !!!

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card