Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
345
Views
0
Helpful
2
Replies

Recommended cabling for FTD not in HA

Chuck Reimer
Level 1
Level 1

‎11-17-2022 01:06 PM

We are deploying 2110 FTD's for L2L connectivity and had a question on the best cabling setup. Our current Internet and DMZ switches are stacked which we are moving away from this setup. What would be the best cabling setup to remove any SPOF with two different switches in play? 

0 Helpful
2 Replies 2

Rob Ingram
VIP
VIP

‎11-17-2022 01:30 PM

@Chuck Reimer Do you want multiple FTD's acting as VPN concentrators but not configured as an HA pair? This can be achieved with a route based VPN or defining multiple peer VPN (primary/secondary). Can you elaborate a bit more please?

0 Helpful

Chuck Reimer
Level 1
Level 1
In response to Rob Ingram

‎11-17-2022 01:34 PM - edited ‎11-17-2022 02:01 PM

@Rob Ingram Single device. More from a switch redundancy point of view. Our network team is breaking the stack so they can do upgrades without affecting all devices connected. So when they upgrade switch1 we would want our single device active regardless of which switch is up/down. We used port-channels before but I don't think this is an option now. Is our only option is deploying in HA pair?

 

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card