I've got a pair of PIX 525s on active/standby. Recently, the primary one failed over to the secondary unit. I'm trying to understand what kind of state they're now in, especially the primary. The secondary unit now has the ip addresses from the primary unit and is handling traffic like you would expect. The primary unit seems to know what addresses it and the secondary are supposed to have now ("show fail"), But, if you do 'show interface', the interfaces all still show up with the original addresses (which are now being used by the secondary). I've connect to the console of both and both configs seem to be the same (all recent changes are on the primary, too). The primary PIX isn't reachable from the network any longer
- is this normal behavior for failover?
- if I try and make the primary active again, will this fix things?
Thanks!