Table of Contents
Advertisement
Installing LAN-Based Failover
Installing LAN-Based Failover
LAN-based failover supports failover between two units connected over a dedicated Ethernet interface.
LAN-based failover eliminates the need for a special failover cable and overcomes the distance
limitations imposed by the failover cable.
Note
Both chassis must be the same model number, have the same amount of RAM, Flash memory, number
and type of interfaces, and be running the same software version.
To set up a LAN-based failover connection, perform the following steps:
Disconnect both PIX security appliances, so that there is no traffic flow between them. If the failover
Step 1
cable is connected to the PIX security appliance, disconnect it.
Configure the PIX security appliances for LAN-based failover. Refer to the chapter on configuring
Step 2
LAN-based failover in the
http://www.cisco.com/en/US/products/sw/secursw/ps2120/prod_configuration_guides_list.html
Power off both units.
Step 3
Connect the LAN failover interfaces to the dedicated switch/hub, as shown in
Step 4
Note
Figure 4-12 LAN-Based Failover Connections
Dedicated Ethernet
Cisco PIX Security Appliance Hardware Installation Guide
4-12
configuration guide
A dedicated LAN interface and a dedicated switch (or VLAN) is required to implement
LAN-based failover. You cannot use a crossover Ethernet cable to connect the two PIX security
appliances.
100 Mbps
Link
FDX
100 Mbps
Link
10/100 ETHERNET 1
10/100 ETHERNET 0
interface
Hub/switch
online at:
PIX 515
FAILOVER
FDX
CONSOLE
Dedicated Ethernet
interface
Chapter 4
PIX 515/515E
Figure
4-12.
PIX 515
100 Mbps
Link
FDX
100 Mbps
Link
FAILOVER
FDX
10/100 ETHERNET 1
10/100 ETHERNET 0
CONSOLE
78-15170-03
Hide quick links:
Advertisement
Table of Contents
