Example 10: Cable-Based Active/Standby Failover (Transparent Mode) - Cisco PIX 500 Series Configuration Manual
Security appliance command line
Hide thumbs
Also See for PIX 500 Series:
- Administration manual (653 pages) ,
- Quick start manual (72 pages) ,
- User manual (60 pages)
Table of Contents
Advertisement
Example 10: Cable-Based Active/Standby Failover (Transparent Mode)
Example 10: Cable-Based Active/Standby Failover (Transparent
Mode)
Figure B-6
Failover cable. This configuration is only available on the PIX 500 series security appliance.
Figure B-9
Primary Unit
209.165.201.1
The following are the typical commands in a cable-based, transparent firewall failover configuration.
enable password myenablepassword
passwd mypassword
hostname pixfirewall
asdm image flash:/asdm.bin
boot system flash:/image.bin
firewall transparent
interface Ethernet0
speed 100
duplex full
nameif outside
security-level 0
no shutdown
interface Ethernet1
speed 100
duplex full
nameif inside
security-level 100
no shutdown
interface Ethernet3
description STATE Failover Interface
telnet 192.168.2.45 255.255.255.255 mgmt
access-list acl_in permit tcp any host 209.165.201.5 eq 80
access-group acl_in in interface outside
Cisco Security Appliance Command Line Configuration Guide
B-26
shows the network diagram for a transparent mode failover configuration using a serial
Transparent Mode Cable-Based Failover Configuration
Outside
192.168.253.1
state
inside
Internet
209.164.201.4
Switch
Serial Failover Cable
192.168.253.2
Switch
Web Server
209.164.201.5
Appendix B
Sample Configurations
Secondary Unit
209.165.201.2
OL-12172-03
Advertisement
Table of Contents
Troubleshooting
