Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
392
Views
0
Helpful
2
Replies

ASA failover question

Go to solution
lkadlik
Level 1
Level 1

‎10-04-2012 11:46 AM - edited ‎03-07-2019 09:17 AM

Hi,

Is it possible to have an asa pair in active/standby mode where the WAN ip addesses are on different subnets?

I had always thought they needed to be on the same lan for it to work.

Thanks

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Sandeep Choudhary
VIP Alumni
VIP Alumni

‎10-04-2012 12:57 PM

Hi Ikadlik,

If you want to use failover as Active / Standby then It can not be possible on diff. Subnet because for that to work, The firewall have to have L2 Adjacency.

Regards

Please rate if it helps.

View solution in original post

0 Helpful
2 Replies 2

Go to solution
singhaam007
Level 3
Level 3

‎10-04-2012 12:52 PM

hello,

In ACTIVE/STANDBY mode, both IP Addresses MUST be in the same network address or you can use 2 units for this scenario. One unit primary and second one as backup.

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00807dac5f.shtml

But in juniper it is possible.

http://www.juniper.net/techpubs/software/junos-security/junos-security10.0/junos-security-swconfig-security/cc_deployment_scenarios.html

please rate if this helps.

thanks

0 Helpful

Go to solution
Sandeep Choudhary
VIP Alumni
VIP Alumni

‎10-04-2012 12:57 PM

Hi Ikadlik,

If you want to use failover as Active / Standby then It can not be possible on diff. Subnet because for that to work, The firewall have to have L2 Adjacency.

Regards

Please rate if it helps.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card