Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
849
Views
10
Helpful
5
Replies

Troubleshooting ASA Failing over

KGrev
Level 4
Level 4

‎12-14-2021 10:17 AM

Novice Here,

 

Occasionally, my asa's will failover to seconday/active. Im able to fail them back to primary/active with no issues.

I need help figuring out what is causing the failover. Is there a log anywhere I can troubleshoot with to signify an issue?

 

Thank you for any advice.

0 Helpful
5 Replies 5

Marvin Rhoads
Hall of Fame
Hall of Fame

‎12-14-2021 10:40 AM

Look at the "show failover history" output on both appliances.

0 Helpful

KGrev
Level 4
Level 4
In response to Marvin Rhoads

‎12-14-2021 11:07 AM

20211214_130431.jpg

 

I attached a photo above. Please let me know if you cannot see it. I'm gathering that there was an issue with my inside interface on my active Firewall?

 

 

0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame

‎12-14-2021 11:09 AM - edited ‎12-16-2021 03:36 AM

Correct. The interface went down - most often due to the cabling or the downstream device to which it is connected.

KGrev
Level 4
Level 4
In response to Marvin Rhoads

‎12-14-2021 11:51 AM

Marvin,

 

I've looked at the logs for the inside connected device, in this case a cisco 6500, I dont see any interfaces go down for this time period.

 

Is there a more valuable resource other than "show logging" I could try on this device?

 

Thank you

Marvin Rhoads
Hall of Fame
Hall of Fame
In response to KGrev

‎12-16-2021 03:38 AM

The interface check fail can also be due to inability to reach the peer device on its interface standby address when one is configured. So there could have been something related to that causing the failover event.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card