cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
485
Views
10
Helpful
2
Replies

hsrp on a vss-Switch

michael.busch67
Level 1
Level 1

Hi,

I've got 2 4507er as vss-bundle and two ftd  2120 (running as ha-Pair) should be connectet as Firewall into direction of the internet. The ports on the 4507er should be used as routing ports with one IP-address.

 

Is it possible to run hsrp on them, so that they seem to be one interface out of the sight of the firewall

 

 

Best Regards 

Michael

1 Accepted Solution

Accepted Solutions

Hello

 


@michael.busch67 wrote:

Hi,

 The ports on the 4507er should be used as routing ports with one IP-address.


Create a L3 svi  on the 4507 for this vlan, Create it L2 equivalent and assign the two FW ports to this vlan


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul

View solution in original post

2 Replies 2

balaji.bandi
Hall of Fame
Hall of Fame

why do you need HSRP here ?

 

if they deployed HA with VSS  - Look at the below document :

 

https://www.cisco.com/c/en/us/td/docs/security/firepower/fxos/clustering/ftd-cluster-solution.html

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Hello

 


@michael.busch67 wrote:

Hi,

 The ports on the 4507er should be used as routing ports with one IP-address.


Create a L3 svi  on the 4507 for this vlan, Create it L2 equivalent and assign the two FW ports to this vlan


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Innovations in Cisco Full Stack Observability - A new webinar from Cisco