Header
Home | Set as homepage | Add to favorites
  Search the Site     » Advanced Search
Sections
Syndication


Blogroll:

||||| ALL Cisco-Network ARTICLES |||||  
CCIE Journey,
The CCIE Journey,

Home : CCSP-Cisco Certified Security Professional : PIX Failover Feature

PIX Failover Feature

Feb 15,2010 by alperen

small font medium font large font
image

The firewall’s critical role in the network security design makes device failure of any kind a serious consideration. The failover feature allows an identical PIX firewall unit to provide redundancy if the primary unit fails. One unit is considered the “active” or “primary” unit, while the other is considered the “standby” or “secondary” unit. The active unit performs its normal network functions, while the standby unit only monitors the other unit, ready to take control if the active unit fails.

Since PIX OS v5.1, PIX models support stateful failover, allowing the system to maintain connection state information for the TCP connection during the failover from the primary unit to the standby unit. If failover occurs, the secondary unit assumes the IP and MAC addresses of the primary unit and begins accepting traffic. Because the other network devices don’t see any change in these addresses, no ARP entries change or timeouts occur anywhere in the network.


295 times read

Related news
» LAN-Based Failover Configuration
by alperen posted on Feb 15,2010
» Failover Configuration with Failover Cable
by alperen posted on Feb 15,2010
» Understanding Failover
by alperen posted on Feb 15,2010
» Managing and Maintaining the PIX Firewall Review
by alperen posted on Feb 19,2010
» Data transmission
by alperen posted on Mar 25,2010
Did you enjoy this article?
1 2 3 4 5
(total 0 votes)

comment Comments (0 posted) 

More Top News
CCSP-Cisco Certified Security Professional
arrow Cisco SAFE Implementation
arrow Preparation Documents
arrow Exam Topics
arrow Skills Required for the Exam
arrow Cisco SAFE Implementation Questions and Answers
arrow Access Control Lists Cisco
arrow Access List Basics
arrow Standard Access Lists
arrow Verifying ACLs
arrow Extended Access Lists
arrow TCP Access Lists
arrow UDP Access Lists
arrow ICMP Access Lists
arrow Named Access Lists
arrow Signature and Alarm Management Review
arrow Signature and Alarm Management Review Questions and Answers
arrow Event Viewer
arrow Managing Alarms
arrow Event Viewer Customization
arrow Preference Settings
arrow Sensor Installation
arrow Connecting to Your Network Sensor Appliance
arrow Sensor Bootstrap
arrow Sensor Installation and Configuration Review
arrow Sensor Installation and Configuration Questions and Answers
arrow Signature and Alarm Management
arrow CIDS Signatures
arrow Signature Series
arrow Signature Implementations
arrow Signature Classes
arrow Signature Types
arrow Signature Severity
Most Popular
Most Commented
Featured Author

alperen

image
<| Cisco Articles | Maximum Learning | All Cisco-Network Study Notes | Privacy Policy |>
If you think you own the material being used without permission, contact alperenmad[at]hotmail.com. material will be removed from the site.