Cisco ASA 5520: Failover-Link on mgmt port
Bookmark this page:
 Yahoo!
 Google
 Windows Live
 del.icio.us
 digg
 Netscape
|
|
|||||||||||||
|
Posted by Bernd Nies on April 16, 2007, 8:27 am
Please log in for more thread options Is it possible to use the mgmt port on a Cisco ASA 5520 for failoverlink to the standby firewall? The ASA 5520 has four gigabit interfaces and one 100 Mb/s interface as management port. I don't want to waste a usless port and we use management on inside interface anyway. According to the docs the failover interface must be a dedicated interface. Thanks in advance, Bernd | |||||||||||||
|
Posted by Trendkill on April 16, 2007, 9:05 am
Please log in for more thread options I'm not an expert in the ASA world, but in all of the Cisco products I have ever used, a dedicated management port cannot serve a dual purpose........They are usually on separate internal components and are limited in functionality. | |||||||||||||
|
Posted by Bernd Nies on April 16, 2007, 10:52 am
Please log in for more thread options Hmm. on the ASA 5520 and 5510 the management port appears as a normal
interface like the other fours. With the ASDM i can assign a security level and also mark it as management only or not. The ASA 5505 is even more flexible: It has a 8 port switch and one can assign vlans on the ports one wants. Currently the management port is not connected on our ASA5520. We do the configuration on the inside interface and for emergency we have the serial port. Bye Bernd | |||||||||||||
|
Posted by mcaissie on April 16, 2007, 11:47 am
Please log in for more thread options The management interface can pass traffic like any other interface . You
just need to remove the line; management-only And though it is recommended that the failover interface be dedicated , it is not mandatory, and it could easily cohabit with small management traffic. > Hi,
> > Is it possible to use the mgmt port on a Cisco ASA 5520 for > failoverlink to the standby firewall? The ASA 5520 has four gigabit > interfaces and one 100 Mb/s interface as management port. > > I don't want to waste a usless port and we use management on inside > interface anyway. According to the docs the failover interface must be > a dedicated interface. > > Thanks in advance, > Bernd > | |||||||||||||
|
Posted by Darren Green on April 16, 2007, 4:26 pm
Please log in for more thread options
> Hi,
Hi,
> > Is it possible to use the mgmt port on a Cisco ASA 5520 for > failoverlink to the standby firewall? The ASA 5520 has four gigabit > interfaces and one 100 Mb/s interface as management port. > > I don't want to waste a usless port and we use management on inside > interface anyway. According to the docs the failover interface must be > a dedicated interface. > > Thanks in advance, > Bernd > I have recently configured an ASA 5510 Management interface as the Failover interface. ! interface Management0/0 description LAN Failover Interface ! failover failover lan unit primary failover lan interface LAN_Failover Management0/0 failover key **** failover replication http failover interface ip LAN_Failover 172.X.X.1 255.255.255.252 standby 172.X.X..2 Works OK for me. Regards Darren | |||||||||||||
| Similar Threads | Posted |
| Cisco ASA 5520: Failover-Link on mgmt port | April 16, 2007, 8:27 am |
| cisco ASA 5520 crashes with 7.1(2) and 7.2(1) | June 13, 2006, 11:01 am |
| Securing 1 VLAN with Cisco ASA 5520? | March 1, 2006, 6:20 am |
| Cisco ASA 5520 VPN Client Question | September 11, 2007, 1:33 pm |
| ASA 5520. | March 28, 2007, 8:32 am |
| ASA 5520 and DMVPN | October 5, 2006, 1:12 pm |
| Greylisting and ASA (5520)? | March 16, 2007, 8:11 am |
| VPN ASA 5520 problem. | December 22, 2007, 12:32 pm |
| ASA 5520 Client VPN Filter | November 28, 2006, 6:09 pm |
| asa 5520 vpn client perfomance | December 21, 2006, 4:08 pm |
| ASA 5520 HTTP Slow | June 23, 2008, 3:05 pm |
| allowing dns request through ASA 5520 | September 30, 2008, 7:29 am |
| ASA 5520 Ative/standby failover | April 20, 2007, 4:48 pm |
| Traffic scanning with ASA-5520 and CSC module | May 23, 2007, 3:34 am |
| Change native VLAN on ASA 5520 | July 5, 2007, 6:17 am |
>
> Is it possible to use the mgmt port on a Cisco ASA 5520 for
> failoverlink to the standby firewall? The ASA 5520 has four gigabit
> interfaces and one 100 Mb/s interface as management port.
>
> I don't want to waste a usless port and we use management on inside
> interface anyway. According to the docs the failover interface must be
> a dedicated interface.
>
> Thanks in advance,
> Bernd