Hello,
I have 2 ASA 5540s ver 8.3 in Active/Standby state.
I am considering a future hypothetical situation where I might need to rename interfaces or reallocate redundant interface groups. Doing so obviously has a major impact on the current primary configuration. My goal would be to minimize or eliminate network downtime during the interface changes.
I am wondering if it is possible to force the secondary ASA from the standby to active state.
Then temporarily disable failover on the primary unit.
Make the interface changes on the primary unit
Then reactivate failover on the primary unit
Force the primary unit back to active and secondary unit to standby
My new interface configuration would then sync from the primary to the secondary.
I believe this would work but must ensure that the secondary ASA can function as the active unit while the failover is disabled on the primary unit. Is there a set length of time the secondary unit can remain active without a failover peer?
Does anyone see issues with operating the secondary unit in this manner while making changes to the primary unit?
Thank you
