Cisco ASA 5505 User Manual

Page 1343

Advertising
background image

63-19

Cisco ASA 5500 Series Configuration Guide using the CLI

Chapter 63 Configuring Active/Active Failover

Configuring Active/Active Failover

hostname/ctx(config)# interface phy_if

hostname/ctx(config-if)# asr-group num

Valid values for num range from 1 to 32. You need to enter the command for each interface that
participates in the asymmetric routing group. You can view the number of ASR packets transmitted,
received, or dropped by an interface using the show interface detail command. You can have more than
one ASR group configured on the ASA, but only one per interface. Only members of the same ASR
group are checked for session information.

Example

Figure 63-1

shows an example of using the asr-group command for asymmetric routing support.

Figure 63-1

ASR Example

The two units have the following configuration (configurations show only the relevant commands). The
device labeled SecAppA in the diagram is the primary unit in the failover pair.

Example 63-1 Primary Unit System Configuration

hostname primary

interface GigabitEthernet0/1

description LAN/STATE Failover Interface

interface GigabitEthernet0/2

no shutdown

interface GigabitEthernet0/3

no shutdown

interface GigabitEthernet0/4

no shutdown

250093

192.168.1.1

192.168.2.2

SecAppB

SecAppA

ISP A

Inside

network

Failover/State link

Outbound Traffic

Return Traffic

ISP B

192.168.2.1

192.168.1.2

Advertising
This manual is related to the following products:

ASA 5585-X, ASA 5555-X, ASA 5545-X, ASA 5525-X, ASA 5515-X, ASA 5512-X, ASA 5580, ASA 5550, ASA 5540, ASA 5520, ASA 5510, ASA 5500 Series

Popular Brands
Popular manuals