CiscoASAfirewallswap-创新互联

Cisco ASA FW replacement Active sand Standby Mode
思科防火墙 更换

创新互联主营汉阴网站建设的网络公司,主营网站建设方案,成都app软件开发,汉阴h5成都微信小程序搭建,汉阴网站营销推广欢迎汉阴等地区企业咨询

must make sure the cross connection is there.

  1. must have written connection for DC to check
  2. must make sure the lincense is there show verion
  3. Must have a roll back plane.
  4. Must communication effectively with DC guys.

show X
Show arp
show ×××-session L2l
sh run nat

Primary A
Gi1/1 to Switch
Gi1/2 to Switch
GI1/8 to Sec B Gi1/8 ( cross connect)
Secondary B

New Primay C
New Secondary D

Step 1.
Move all the connection from B to New Secondary D ( include cross connect)

Step 2.
Failover over the Active to New Secondary D ( in new D failover active)
show failvoer state
Step 3.
Move all the connection from A to new C.
Show failvoer state

Step 3.
Move the Active FW to new C. ( in C failvoer active)

show xlate
show arp
ping host to see if its live
show -session-l2l to check tunnel status.

因为跟换的时候是一台一台更换的。

导致我在更换的时候,
比如 Old Primary 和 New Sec D 的时候, 怎么也不工作, 原来他们之间的
Failover Link 没有连起来

Suppose
Old Primary Failvoer link to New Sec D Failover link.

现实连的是
New Priamary C Failover link to New Sec D failover link.

Note: cross connect = Failvoer link.

是主防火墙 和备用防火墙之间的通信连接

另外有需要云服务器可以了解下创新互联scvps.cn,海内外云服务器15元起步,三天无理由+7*72小时售后在线,公司持有idc许可证,提供“云服务器、裸金属服务器、高防服务器、香港服务器、美国服务器、虚拟主机、免备案服务器”等云主机租用服务以及企业上云的综合解决方案,具有“安全稳定、简单易用、服务可用性高、性价比高”等特点与优势,专为企业上云打造定制,能够满足用户丰富、多元化的应用场景需求。


新闻标题:CiscoASAfirewallswap-创新互联
转载源于:http://pwwzsj.com/article/copppj.html