10-31-2011 06:40 AM - edited 03-07-2019 03:08 AM
hi,
when we configure redundant interface on a firewall, one member interface will be active while other is standby. What should be the configuration on the other end of the link on the switch. How should be the interfaces on the switch which are connected to the firewall (redundant member interfaces) be configured . should we use ether channel?
10-31-2011 06:53 AM
Hi krishna,
You no need to configure any etherchannel at the switch end.
You can configure the switch port like a normal access ports.
ASA Primary interface config:
interface GigabitEthernet0/1
nameif inside
security-level 100
ip address 10.38.2.100 255.255.0.0 standby 10.38.2.101
ASA Secondary interface config:
interface GigabitEthernet0/1
nameif inside
security-level 100
ip address 10.38.2.100 255.255.0.0 standby 10.38.2.101
Core Switch end interface config:
interface GigabitEthernet3/4
description ASA Primary
switchport access vlan xxxxx
switchport mode access
interface GigabitEthernet4/4
description ASA Secondary
switchport access vlan xxxxx
switchport mode access
Please rate the helpfull posts.
Regards,
Naidu.
10-31-2011 09:14 AM
thanks naidu
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide