I recently got a pair of Cisco 5520 ASA’s to replace my old PIX 515e device. These new devices are much nicer. They have the new ASDM interface, and can also be used for VPN. I got a pair of them so I can have redundant security. I’m going to describe how to configure Active/Standby Failover with an Ethernet failover link. Make sure you have an ethernet cable plugged into a physical port on each device that you want to use for failover.
PRIMARY UNIT CONFIGURATION:
Configure each device with an IP address according to whether it’s the active or standby unit. Both devices IP addresses must be within the same subnet.
hostname(config-if)#ip address 172.16.1.1 255.255.0.0 standby 172.16.1.2
Here, 172.16.1.1 is used for the primary unit outside interface IP address, and 172.16.1.2 assigns to the secondary (standby) unit…
View original post 395 mots de plus