Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
308
Views
0
Helpful
1
Replies

PIX keeps failing over

vanagon2tdi
Level 1
Level 1

‎02-03-2006 07:11 AM - edited ‎02-21-2020 12:41 AM

what type of logging should i turn on to find out why my PIX 515 version 6.3.4 keeps failing over?

Here are the loggs i have so far:

104002: (Primary) Switching to STNDBY - switch to failed state

104003: (Primary) Switching to FAILED.

105009: (Primary) Testing on interface 1 Failed

105003: (Primary) Monitoring on interface 0 waiting

104004: (Primary) Switching to OK.

105003: (Primary) Monitoring on interface 1 waiting

105004: (Primary) Monitoring on interface 1 normal

105004: (Primary) Monitoring on interface 0 normal

105005: (Primary) Lost Failover communications with mate on interface 0

105008: (Primary) Testing Interface 0

103003: (Primary) Other firewall network interface 0 failed.

104001: (Primary) Switching to ACTIVE - mate interface failed.

105009: (Primary) Testing on interface 0 Passed

305006: portmap translation creation failed for protocol 50 src inside:7.x.x.x dst outside:67.x.x.x

305005: No translation group found for icmp src outside:64.x.x.x dst inside:204.x.x.x (type 8, code 0)

305005: No translation group found for icmp src outside:64.x.x.x dst inside:204.x.x.x (type 8, code 0)

305005: No translation group found for icmp src outside:64.x.x.x dst inside:204.x.x.x (type 8, code 0)

305006: portmap translation creation failed for protocol 50 src inside:7.4.92.100 dst outside:67.70.238.26

105003: (Primary) Monitoring on interface 1 waiting

105003: (Primary) Monitoring on interface 0 waiting

305006: portmap translation creation failed for protocol 50 src inside:7.x.x.x dst outside:67.x.x.x

105004: (Primary) Monitoring on interface 1 normal

105004: (Primary) Monitoring on interface 0 normal

I also have a SYSlog going and am seeing messages like:

Deny IP Spoof from (0.0.0.0) to 204.x.x.x on interface outside

and

Deny IP due to Land Attack from 204.5.5.1 to 204.5.5.1

Any help would be great.

0 Helpful
1 Reply 1

mpalardy
Level 3
Level 3

‎02-03-2006 07:36 AM

Messages indicate errors on either inside and outside interface.

First check if cabling is ok.

Second check for any interface misconfiguration on both pix.

Past an output (removing IP's) from "show interface E0" and E1 from both pix's.

You may find this link interesting to help you find what is going wrong:

http://www.cisco.com/warp/customer/110/pixperformance.html

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card