Cisco Cisco ASA 5525-X Adaptive Security Appliance 기술 매뉴얼
IPS Reimage Process for Modules in an ASA
Failover Pair Configuration Example
Failover Pair Configuration Example
Document ID: 116155
Contributed by Todd Pula, Cisco TAC Engineer.
Jun 13, 2013
Jun 13, 2013
Contents
Introduction
Prerequisites
Requirements
Components Used
Background Information
Configure
Initial Steps
Reimage the IPS on the Current Standby ASA (ASA 5500 Series only)
Reimage the IPS on the New Standby ASA (ASA 5500 Series only)
Reimage the IPS on the Current Standby ASA (ASA 5500−X Series only)
Reimage the IPS on the New Standby ASA (ASA 5500−X Series only)
Verify
Troubleshoot
Related Information
Prerequisites
Requirements
Components Used
Background Information
Configure
Initial Steps
Reimage the IPS on the Current Standby ASA (ASA 5500 Series only)
Reimage the IPS on the New Standby ASA (ASA 5500 Series only)
Reimage the IPS on the Current Standby ASA (ASA 5500−X Series only)
Reimage the IPS on the New Standby ASA (ASA 5500−X Series only)
Verify
Troubleshoot
Related Information
Introduction
This document describes the process required to reimage a hardware or software Intrusion Prevention System
(IPS) module in an Adaptive Security Appliance (ASA) failover pair. This process can be applied to the Cisco
ASA 5500 and 5500−X Series of firewall appliances. The configuration examples in this document are for an
active/standby failover configuration. A similar process can be followed in an active/active configuration;
however, you must ensure that there are no active contexts running before a reload is performed.
(IPS) module in an Adaptive Security Appliance (ASA) failover pair. This process can be applied to the Cisco
ASA 5500 and 5500−X Series of firewall appliances. The configuration examples in this document are for an
active/standby failover configuration. A similar process can be followed in an active/active configuration;
however, you must ensure that there are no active contexts running before a reload is performed.
Prerequisites
Requirements
Cisco recommends that you have knowledge of these topics:
Use of the command−line interface (CLI) for IPS software upgrades
•
Use of the CLI for ASA failover configuration
•
Components Used
The information in this document is based on Security Services Module (SSM), Security Services Processor
(SSP), and software IPS modules on the ASA 5500 and 5500−X Series of firewall appliances.
(SSP), and software IPS modules on the ASA 5500 and 5500−X Series of firewall appliances.
The information in this document was created from the devices in a specific lab environment. All of the
devices used in this document started with a cleared (default) configuration. If your network is live, make sure
that you understand the potential impact of any command.
devices used in this document started with a cleared (default) configuration. If your network is live, make sure
that you understand the potential impact of any command.