Scribd Logo
Carica

Benvenuto in Scribd!

  • Fail Over

    Caricato da

    Hai Pham Van
    7 visualizzazioni3 pagine
    Failover is triggered at the failover group level when one of these events occurs: Too many monitored interfaces in the group fail. The no failover active or the failover active command is entered in the system execution space.

    Descrizione originale:

    Copyright

    © Attribution Non-Commercial (BY-NC)

    Formati disponibili

    DOCX, PDF, TXT o leggi online da Scribd

    Hai trovato utile questo documento?

    Questo contenuto è inappropriato?

    Segnala questo documento
    Failover is triggered at the failover group level when one of these events occurs: Too many monitored interfaces in the group fail. The no failover active or the failover active command is entered in the system execution space.

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Scarica in formato DOCX, PDF, TXT o leggi online su Scribd
    Segnala contenuti inappropriati
    7 visualizzazioni3 pagine

    Fail Over

    Caricato da

    Hai Pham Van
    Failover is triggered at the failover group level when one of these events occurs: Too many monitored interfaces in the group fail. The no failover active or the failover active command is entered in the system execution space.

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Scarica in formato DOCX, PDF, TXT o leggi online su Scribd
    Segnala contenuti inappropriati
    di 3

    Failover Triggers In Active/Active failover, failover can be triggered at the unit level if one of the following events occurs:

    The unit has a hardware failure. The unit has a power failure. The unit has a software failure. The no failover active or the failover active command is entered in the system execution space. Failover is triggered at the failover group level when one of these events occurs: Too many monitored interfaces in the group fail. The no failover active group group_id or failover active group group_id command is entered. Configuration 1.Enable multiple context mode(on both devices) ciscoasa(config)# mode multiple

    ciscoasa(config)# show mode Security context mode: multiple 2.Configure contexts (on primary device) admin-context CustomerA context CustomerA allocate-interface GigabitEthernet0.100 allocate-interface GigabitEthernet2 config-url disk0:/admin.cfg context CustomerB allocate-interface GigabitEthernet0.200 allocate-interface GigabitEthernet2 config-url disk0:/CustomerB.cfg 3.Configure failover group (on primary device)
    1

    failover group 1 preempt polltime interface 1 holdtime 3 failover group 2 secondary preempt polltime interface 1 holdtime 3 4.Configure failover interface (on both devices) failover lan unit primary (secondary on the second device) failover lan interface failover GigabitEthernet1 failover link linkstate GigabitEthernet2 failover interface ip failover 1.1.1.1 255.255.255.252 standby 1.1.1.2 failover interface ip linkstate 2.2.2.1 255.255.255.252 standby 2.2.2.2 failover 5.Configure the virtual firewall (contexts) - ip addresses, policies, etc. ciscoasa(config)# changeto context CustomerA interface GigabitEthernet0.100 nameif insideA security-level 0 ip address 10.100.100.1 255.255.255.0 standby 10.100.100.2 ! interface GigabitEthernet3 nameif outside security-level 0 ip address 192.168.223.100 255.255.255.0 standby 192.168.223.101 ciscoasa(config)# changeto context CustomerB nterface GigabitEthernet0.200 nameif insideB security-level 0 ip address 10.200.200.1 255.255.255.0 standby 10.200.200.2 ! interface GigabitEthernet3 nameif outside security-level 0 ip address 192.168.223.200 255.255.255.0 standby 192.168.223.201
    2

    Command Replication ciscoasa(config)# show failover group 1 ciscoasa(config)# show failover group 2 ciscoasa(config)# show failover state

    Potrebbero piacerti anche