Re: Pix Failover Question
It sounds like they're both identical. That's good. Do you have ALL the interfaces in an UP state? and each pair of interfaces are on the same hub? A down interface will be considered a failure Both configs are identical? You power cycled both boxes at the same time? Rodgers Moore ""BE"" <[EMAIL PROTECTED]> wrote in message 8pt9cl$t1g$[EMAIL PROTECTED]">news:8pt9cl$t1g$[EMAIL PROTECTED]... > Hey gang! Any Pix gurus out there? > > I've been playing with a couple of Pixs (510s) trying to get the failover to > work. I thought it would be a piece of cake, but it just isn't showing me > any love. Ive got (2) Pix 510s that each have 3 NICs in them (internal, > untrusted, DMZ) each running 4.4. Everything seems all fine and dandy until > about 10 minutes later when the standby PIX starts stealing the DMZ > connections. > > Any thoughts? > > -Brad > bellis@opts ys.net > > used cisco hardware: www.opt sys.net > cisco hardware newsgroup: news://news.opts ys.net/cisco.hardware > > > **NOTE: New CCNA/CCDA List has been formed. For more information go to > http://www.groupstudy.com/list/Associates.html > _ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Pix Failover Question
Rodgers, Hi! Thanks for your response. The answer is YES to all of your questions. The really strange thing is, when I leave the single PIX 510 running for an extended period of time, it works great, no problems. When I add the second PIX, it just seems to grab the DMZ connection (but leaves the other two connections alone). My original guess was that there is some strange bug in 4.4 somewhere that I havent seen. Both boxes have the same config (and are sync'd up). -B ""Rodgers Moore"" <[EMAIL PROTECTED]> wrote in message 8ptbav$4fn$[EMAIL PROTECTED]">news:8ptbav$4fn$[EMAIL PROTECTED]... > It sounds like they're both identical. That's good. > Do you have ALL the interfaces in an UP state? and each pair of interfaces > are on the same hub? > > A down interface will be considered a failure > > Both configs are identical? You power cycled both boxes at the same time? > > Rodgers Moore > > ""BE"" <[EMAIL PROTECTED]> wrote in message 8pt9cl$t1g$[EMAIL PROTECTED]">news:8pt9cl$t1g$[EMAIL PROTECTED]... > > Hey gang! Any Pix gurus out there? > > > > I've been playing with a couple of Pixs (510s) trying to get the failover > to > > work. I thought it would be a piece of cake, but it just isn't showing me > > any love. Ive got (2) Pix 510s that each have 3 NICs in them (internal, > > untrusted, DMZ) each running 4.4. Everything seems all fine and dandy > until > > about 10 minutes later when the standby PIX starts stealing the DMZ > > connections. > > > > Any thoughts? > > > > -Brad > > bellis@opts ys.net > > > > used cisco hardware: www.opt sys.net > > cisco hardware newsgroup: news://news.opts ys.net/cisco.hardware > > > > > > **NOTE: New CCNA/CCDA List has been formed. For more information go to > > http://www.groupstudy.com/list/Associates.html > > _ > > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > > FAQ, list archives, and subscription info: http://www.groupstudy.com > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > > **NOTE: New CCNA/CCDA List has been formed. For more information go to > http://www.groupstudy.com/list/Associates.html > _ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Pix Failover Question
A co-worker has seen this and it is a bug. He didn't remember the version number(s) affected. Rodgers Moore ""BE"" <[EMAIL PROTECTED]> wrote in message 8ptc7v$7a1$[EMAIL PROTECTED]">news:8ptc7v$7a1$[EMAIL PROTECTED]... > Rodgers, > > Hi! Thanks for your response. > > The answer is YES to all of your questions. The really strange thing is, > when I leave the single PIX 510 running for an extended period of time, it > works great, no problems. When I add the second PIX, it just seems to grab > the DMZ connection (but leaves the other two connections alone). My > original guess was that there is some strange bug in 4.4 somewhere that I > havent seen. > > Both boxes have the same config (and are sync'd up). > > -B > ""Rodgers Moore"" <[EMAIL PROTECTED]> wrote in message > 8ptbav$4fn$[EMAIL PROTECTED]">news:8ptbav$4fn$[EMAIL PROTECTED]... > > It sounds like they're both identical. That's good. > > Do you have ALL the interfaces in an UP state? and each pair of interfaces > > are on the same hub? > > > > A down interface will be considered a failure > > > > Both configs are identical? You power cycled both boxes at the same time? > > > > Rodgers Moore > > > > ""BE"" <[EMAIL PROTECTED]> wrote in message 8pt9cl$t1g$[EMAIL PROTECTED]">news:8pt9cl$t1g$[EMAIL PROTECTED]... > > > Hey gang! Any Pix gurus out there? > > > > > > I've been playing with a couple of Pixs (510s) trying to get the > failover > > to > > > work. I thought it would be a piece of cake, but it just isn't showing > me > > > any love. Ive got (2) Pix 510s that each have 3 NICs in them (internal, > > > untrusted, DMZ) each running 4.4. Everything seems all fine and dandy > > until > > > about 10 minutes later when the standby PIX starts stealing the DMZ > > > connections. > > > > > > Any thoughts? > > > > > > -Brad > > > bellis@opts ys.net > > > > > > used cisco hardware: www.opt sys.net > > > cisco hardware newsgroup: news://news.opts ys.net/cisco.hardware > > > > > > > > > **NOTE: New CCNA/CCDA List has been formed. For more information go to > > > http://www.groupstudy.com/list/Associates.html > > > _ > > > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > > > FAQ, list archives, and subscription info: http://www.groupstudy.com > > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > > > > > > **NOTE: New CCNA/CCDA List has been formed. For more information go to > > http://www.groupstudy.com/list/Associates.html > > _ > > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > > FAQ, list archives, and subscription info: http://www.groupstudy.com > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > > > > **NOTE: New CCNA/CCDA List has been formed. For more information go to > http://www.groupstudy.com/list/Associates.html > _ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Pix Failover Question
Brad, If the DMZ interface is not being used at the moment you need to connect any unused interfaces to the same unused interfaces on the standby PIX with a crossover cable. Dave Swink > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > BE > Sent: Friday, September 15, 2000 8:44 AM > To: [EMAIL PROTECTED] > Subject: Pix Failover Question > > > Hey gang! Any Pix gurus out there? > > I've been playing with a couple of Pixs (510s) trying to get the > failover to > work. I thought it would be a piece of cake, but it just isn't showing me > any love. Ive got (2) Pix 510s that each have 3 NICs in them (internal, > untrusted, DMZ) each running 4.4. Everything seems all fine and > dandy until > about 10 minutes later when the standby PIX starts stealing the DMZ > connections. > > Any thoughts? > > -Brad > bellis@opts ys.net > > used cisco hardware: www.opt sys.net > cisco hardware newsgroup: news://news.opts ys.net/cisco.hardware > > > **NOTE: New CCNA/CCDA List has been formed. For more information go to > http://www.groupstudy.com/list/Associates.html > _ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
