Cisco PIX 500 Series Configuration Manual page 244
Security appliance command line
Hide thumbs
Also See for PIX 500 Series:
- Administration manual (653 pages) ,
- Quick start manual (72 pages) ,
- User manual (60 pages)
Table of Contents
Advertisement
Configuring Failover
Step 7
Save the system configuration to Flash memory:
hostname(config)# copy running-config startup-config
Configuring the Secondary Unit
The only configuration required on the secondary unit is for the failover interface. The secondary unit
requires these commands to initially communicate with the primary unit. After the primary unit sends
its configuration to the secondary unit, the only permanent difference between the two configurations is
the failover lan unit command, which identifies each unit as primary or secondary.
For multiple context mode, all steps are performed in the system execution space unless noted otherwise.
To configure the secondary unit, perform the following steps:
Step 1
(PIX 500 series security appliance only) Enable LAN-based failover:
hostname(config)# failover lan enable
Define the failover interface. Use the same settings as you used for the primary unit.
Step 2
a.
b.
c.
(Optional) Designate this unit as the secondary unit:
Step 3
hostname(config)# failover lan unit secondary
Note
Step 4
Enable failover:
hostname(config)# failover
After you enable failover, the active unit sends the configuration in running memory to the standby unit.
As the configuration synchronizes, the messages "Beginning configuration replication: Sending to mate"
and "End Configuration Replication to mate" appear on the active unit console.
Step 5
After the running configuration has completed replication, save the configuration to Flash memory:
Cisco Security Appliance Command Line Configuration Guide
14-24
Specify the interface to be used as the failover interface:
hostname(config)# failover lan interface if_name phy_if
The if_name argument assigns a name to the interface specified by the phy_if argument.
Assign the active and standby IP address to the failover link:
hostname(config)# failover interface ip if_name ip_addr mask standby ip_addr
Note
Enter this command exactly as you entered it on the primary unit when you configured the
failover interface on the primary unit.
Enable the interface:
hostname(config)# interface phy_if
hostname(config-if)# no shutdown
This step is optional because by default units are designated as secondary unless previously
configured.
Chapter 14
Configuring Failover
OL-12172-03
Advertisement
Table of Contents
Troubleshooting
