-
8/11/2019 Active Active Failover
1/15
ASA2:
ASA Version 8.4(2)
!
hostname ciscoasa
enable password 8Ry2YjIyt7RRXU24 encrypted
no mac-address auto
!
interface GigabitEthernet0
!
interface GigabitEthernet1
!
interface GigabitEthernet2
!
interface GigabitEthernet3
description LAN Failover Interface
!
interface GigabitEthernet4
description STATE Failover Interface
!
interface GigabitEthernet5
shutdown
!
class default
limit-resource All 0
limit-resource ASDM 5
limit-resource SSH 5
-
8/11/2019 Active Active Failover
2/15
limit-resource Telnet 5
!
ftp mode passive
pager lines 24
failover
failover lan unit secondary
failover lan interface LAN_FAIL GigabitEthernet3
failover link LINK_FAIL GigabitEthernet4
failover interface ip LAN_FAIL 10.1.1.1 255.255.255.252 standby
10.1.1.2
failover interface ip LINK_FAIL 10.2.2.1 255.255.255.252 standby
10.2.2.2
failover group 1
preempt 120
failover group 2
secondary
preempt 120
no asdm history enable
arp timeout 14400
console timeout 0
admin-context admin
context admin
config-url disk0:/admin.cfg
!
context CTX-1
allocate-interface GigabitEthernet0
-
8/11/2019 Active Active Failover
3/15
allocate-interface GigabitEthernet1
config-url disk0:/CTX-1
join-failover-group 1
!
context CTX-2
allocate-interface GigabitEthernet0
allocate-interface GigabitEthernet2
config-url disk0:/CTX-2
join-failover-group 2
!
prompt hostname context priority state
no call-home reporting anonymous
call-home
profile CiscoTAC-1
no active
destination address http
https://tools.cisco.com/its/service/oddce/services/DDCEService
destination address email [email protected]
destination transport-method http
subscribe-to-alert-group diagnostic
subscribe-to-alert-group environment
subscribe-to-alert-group inventory periodic monthly
subscribe-to-alert-group configuration periodic monthly
subscribe-to-alert-group telemetry periodic daily
crashinfo save disable
Cryptochecksum:9c6c62d1f803beedb1d7688835c82438
-
8/11/2019 Active Active Failover
4/15
: end
ciscoasa/sec/stby#
ciscoasa/sec/stby#
.
ASA1
ASA Version 8.4(2)
!
hostname ciscoasa
enable password 8Ry2YjIyt7RRXU24 encrypted
no mac-address auto
!
interface GigabitEthernet0
!
interface GigabitEthernet1
!
interface GigabitEthernet2
!
interface GigabitEthernet3
description LAN Failover Interface
!
interface GigabitEthernet4
description STATE Failover Interface
!
interface GigabitEthernet5
shutdown
!
class default
-
8/11/2019 Active Active Failover
5/15
limit-resource All 0
limit-resource ASDM 5
limit-resource SSH 5
limit-resource Telnet 5
!
ftp mode passive
pager lines 24
failover
failover lan unit primary
failover lan interface LAN_FAIL GigabitEthernet3
failover link LINK_FAIL GigabitEthernet4
failover interface ip LAN_FAIL 10.1.1.1 255.255.255.252 standby
10.1.1.2
failover interface ip LINK_FAIL 10.2.2.1 255.255.255.252 standby
10.2.2.2
failover group 1
preempt 120
failover group 2
secondary
preempt 120
no asdm history enable
arp timeout 14400
console timeout 0
!
tls-proxy maximum-session 10000
!
admin-context admin
-
8/11/2019 Active Active Failover
6/15
context admin
config-url disk0:/admin.cfg
!
context CTX-1
allocate-interface GigabitEthernet0
allocate-interface GigabitEthernet1
config-url disk0:/CTX-1
join-failover-group 1
!
context CTX-2
allocate-interface GigabitEthernet0
allocate-interface GigabitEthernet2
config-url disk0:/CTX-2
join-failover-group 2
!
prompt hostname context priority state
no call-home reporting anonymous
call-home
profile CiscoTAC-1
no active
destination address http
https://tools.cisco.com/its/service/oddce/services/DDCEService
destination address email [email protected]
destination transport-method http
subscribe-to-alert-group diagnostic
-
8/11/2019 Active Active Failover
7/15
subscribe-to-alert-group environment
subscribe-to-alert-group inventory periodic monthly
subscribe-to-alert-group configuration periodic monthly
subscribe-to-alert-group telemetry periodic daily
crashinfo save disable
Cryptochecksum:03872c657c74b63bcf2a804956cec681
: end
ciscoasa/pri/act#
.
SERVER
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname Server
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
memory-size iomem 5
no ip routing
no ip cef
!
-
8/11/2019 Active Active Failover
8/15
!
!
!
no ip domain lookup
ip domain name lab.local
!
multilink bundle-name authenticated
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
-
8/11/2019 Active Active Failover
9/15
!
archive
log config
hidekeys
!
!
!
!
!
!
!
!
interface FastEthernet0/0
ip address 10.0.0.10 255.255.255.0
no ip route-cache
duplex auto
speed auto
!
interface FastEthernet0/1
no ip address
no ip route-cache
shutdown
duplex auto
speed auto
!
ip default-gateway 10.0.0.1
ip forward-protocol nd
-
8/11/2019 Active Active Failover
10/15
!
!
no ip http server
no ip http secure-server
!
!
!
!
!
!
!
control-plane
!
!
!
!
!
!
!
!
!
!
line con 0
exec-timeout 0 0
privilege level 15
logging synchronous
line aux 0
-
8/11/2019 Active Active Failover
11/15
exec-timeout 0 0
privilege level 15
logging synchronous
line vty 0 4
login
!
!
end
Server#
Workstation
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname Workstation
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
memory-size iomem 5
no ip routing
no ip cef
-
8/11/2019 Active Active Failover
12/15
!
!
!
!
no ip domain lookup
ip domain name lab.local
!
multilink bundle-name authenticated
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
-
8/11/2019 Active Active Failover
13/15
!
!
archive
log config
hidekeys
!
!
!
!
!
!
!
!
interface FastEthernet0/0
ip address 172.16.0.10 255.255.255.0
no ip route-cache
duplex auto
speed auto
!
interface FastEthernet0/1
no ip address
no ip route-cache
shutdown
duplex auto
speed auto
!
ip default-gateway 172.16.0.1
-
8/11/2019 Active Active Failover
14/15
ip forward-protocol nd
!
!
no ip http server
no ip http secure-server
!
!
!
!
!
!
!
control-plane
!
!
!
!
!
!
!
!
!
!
line con 0
exec-timeout 0 0
privilege level 15
logging synchronous
-
8/11/2019 Active Active Failover
15/15
line aux 0
exec-timeout 0 0
privilege level 15
logging synchronous
line vty 0 4
login
!
!
end
Workstation#
.
R1
