Wednesday, 27 May 2020

ASA Upgrade in Active and Standby Pair

Primary - copy running-config tftp: (Backup the configuratoin to TFTP Server)

Primary - copy tftp: disk0:  (Download the software and asdm image from TFTP Server)

Secondary - copy tftp: disk0: (Download software and asdm image the image from TFTP Server)

Primary - show bootvar; no boot system <old_image>; boot system <new_image>;

Secondary - show bootvar; no boot system <old_image>; boot system <new_image>;

  • Login to Primary ASA
    • check if it is active or not; (if active issue below command else – failover active- SSH Session of both Pri/Sec will be terminated)

failover reload-standby

After the standby firewall is UP

no failover active; SSH Session of both Pri/Sec will be terminated (Primary will become standby)

  • Login to Secondary ASA; (should be active now)
    • check if secondary is active or not;

failover reload-standby

  • Login to Primary ASA

failover active (should be standby)

What are Sticky Clients ?

What are Sticky Clients ? CREDIT : http://wifinigel.blogspot.com/2015/03/what-are-sticky-clients.html One term you'll often hear banded ...