Coming Soon: GET:IT Endpoint Management 1-Day Conference on September 28th at 9:30 AM ET Coming Soon: GET:IT Endpoint Management 1-Day Conference on September 28th at 9:30 AM ET

ASA Failover and Layer 3 (3560-X)

Home Forums Networking Cisco Security – PIX/ASA/VPN ASA Failover and Layer 3 (3560-X)

Viewing 1 post (of 1 total)
  • Author
    Posts

  • Highl1
    Member
    #161513

    Here is my setup https://dl.dropboxusercontent.com/u/16923193/asa%20failover.JPG As you can see, we have dual ASA 5512-X used for Internet access, VPN and so on, and L3 3560-X behind them, that’s connected to L2 access switches.

    ASA config is ok so far. Failover is working between ASAs (when primary fails, the secondary takes the config of the primary, and also the IPs of inside/outside addresses), but I don’t know how to configure GE 0/2 on 3560-X that’s behind the ASA?

    I wanted to put it also with no switchport command, and ip address 10.101.0.4 255.255.255.0 but that overlaps GE 0/1 and L3 won’t let me do what. Is there a workaround with this one, so I can the L3 automatically switches over to GE 0/2 if primary ASA fails (in other words, if the connection with P-ASA to GE 0/1 L3 fails)

    Thanks in advance!

Viewing 1 post (of 1 total)

You must be logged in to reply to this topic.

Live Webinar: Active Directory Security: What Needs Immediate Priority!Live on Tuesday, October 12th at 1 PM ET

Attacks on Active Directory are at an all-time high. Companies that are not taking heed are being punished, both monetarily and with loss of production.

In this webinar, you will learn:

  • How to prioritize vulnerability management
  • What attackers are leveraging to breach organizations
  • Where Active Directory security needs immediate attention
  • Overall strategy to secure your environment and keep it secured

Sponsored by: