Need your help. I have Active/Standby ASAs in my data center that is participating in OSPF. Question is we have to test failover between HA. From what I read people are having anywhere between 5-10sec outage during failover because of OSPF convergence. Someone suggested turning on "NSF CISCO" under ospf process. Can find any good info on this how it works on the ASA. Anyone have this running if did you have any outage during failover? Also how does NSF work on ASAs. I'm running 9.4.3 code. Any help is greatly appreciated.
Yes it is configure for stateful failover. I think failover to standby is fine is just rebuilding OSPF on the standby unit which has me concerned. Anyway to make it so we have no downtime or minimal at the least?
Statefull failover does replicate the OSPF routing table. I have to admit to OSPF always being a bit painful. Can you change to EIGRP? It is very fast in this situation.
If you are running 9.4.3 you shouldn't be affected, but this bug is close to what you are describing.
