CCSP Cisco Secure PIX Firewall Advanced Exam Certification Guide, Second Edition [Electronic resources] نسخه متنی

با بیش از 100000 منبع الکترونیکی رایگان به زبان فارسی ، عربی و انگلیسی

Task 7: Configuring Failover

Failover is configured on the PIX only at the Reston site (HQ-PIX). When configuring failover, you first configure the failover parameters on the primary PIX Firewall (leaving the secondary PIX Firewall powered off). Then you configure the failover parameters on the secondary PIX Firewall. The steps to configure failover are as follows:

Step 1.

Make sure that failover is enabled on the primary PIX Firewall using the following command:


 failover

Failover is not enabled by default.

Step 2.

Configure failover ip address for all interfaces that have an IP address configured on them:


 failover ip address inside 10.10.10.2 
 failover ip address outside 192.168.1.3 
 failover ip address DMZ 172.16.31.2 
 failover ip address failover 1.1.1.2

Step 3.

Check the status of your failover configuration:


 show failover 
Failover On
Cable status: Unknown
Reconnect timeout 0:00:00
Poll frequency 15 seconds
This host: primary - Active
Active time: 225 (sec)
Interface failover (1.1.1.1): Normal (Waiting)
Interface dmz (172.16.31.1): Normal (Waiting)
Interface outside (192.168.1.2): Normal (Waiting)
Interface inside (10.10.10.1): Normal (Waiting)
Other host: secondary - Standby
Active time: 0 (sec)
Interface failover (1.1.1.2: Unknown (Waiting)
???Authors: Missing ')' bracket. Thanks - Izak
Interface dmz (172.16.31.2): Unknown (Waiting)
Interface outside (192.168.1.3): Unknown (Waiting)
Interface inside (10.10.10.2): Unknown (Waiting)

Step 4.

Enable stateful failover:


 failover link failover

Step 5.

Connect the failover cable between the two PIX Firewalls if you have not already connected it.

Step 6.

Power on the secondary unit.

Step 7.

Check the status of your failover configuration:


HQ-PIX#  show failover 
Failover On
Cable status: Normal
Reconnect timeout 0:00:00
Poll frequency 15 seconds
This host: Primary - Active
Active time: 123(sec)
Interface failover (1.1.1.1): Normal
Interface dmz (172.16.31.1): Normal
Interface outside (192.168.1.2): Normal
Interface inside (10.10.10.1): Normal
Other host: Secondary - Standby
Active time: 0 (sec)
Interface failover (1.1.1.2):Normal
Interface dmz (172.16.31.2): Normal
Interface outside (192.168.1.3): Normal
Interface inside (10.10.10.2): Normal
Stateful Failover Logical Update Statistics
Link : failover
Stateful Obj    xmit       xerr       rcv      rerr
General         435       0          0        0
sys cmd         415       0          0        0
up time         0          0          0        0
xlate           27         0          0        0
tcp conn        203       0          0        0
udp conn        0          0          0        0
ARP tbl         0          0          0        0
RIP Tbl         0          0          0        0
Logical Update Queue Information
Cur     Max     Total
Recv Q:         0       0       0
Xmit Q:         0       1       614

CCSP Cisco Secure PIX Firewall Advanced Exam Certification Guide, Second Edition [Electronic resources] نسخه متنی

فارسی

کردی

العربیه

اردو

Türkçe

Русский

English

Français

کانال فیلم من

تبیان من

فایلهای من

کتابخانه من

پنل پیامکی

وبلاگ من

اینجــــا یک کتابخانه دیجیتالی است

با بیش از 100000 منبع الکترونیکی رایگان به زبان فارسی ، عربی و انگلیسی

CCSP Cisco Secure PIX Firewall Advanced Exam Certification Guide, Second Edition [Electronic resources] - نسخه متنی

Greg Bastien; Earl Carter; Christian Degu

آدرس پست الکترونیک گیرنده :

آدرس پست الکترونیک فرستنده :

نام و نام خانوارگی فرستنده :

پیغام برای گیرنده ( حداکثر 250 حرف ) :

کد امنیتی را وارد نمایید

فونت

اندازه قلم

حالت نمایش

Task 7: Configuring Failover