COMPUTER THREATS SECURITY
WHAT IS A FIREWALL IN NETWORK SECURITY
|
Question
[CLICK ON ANY CHOICE TO KNOW THE RIGHT ANSWER]
|
|
|
Both ASA units are managed separately.
|
|
|
The primary and the secondary roles of the ASAs change.
|
|
|
When a Cisco ASA boots, if it does not detect an ASA, it stops the failover process.
|
|
|
The active ASA replicates all configuration changes to the standby ASA.
|
Detailed explanation-1: -Active/Active Failover is only available on units that runs in multiple context mode. With Active/Standby Failover, only one unit passes traffic while the other unit waits in a standby state. Active/Standby Failover is available on units that run in either single or multiple context mode.
Detailed explanation-2: -When failover occurs, ASA standby assumes active IP and MAC and sends. Gratuitous ARP on each interface to recalculate L2 subnets. Failover interface is required and intended for configuration replication and keep.
Detailed explanation-3: -ASA Active/Standby failover/redundancy means connecting two identical ASA firewall units via LAN cable so that when one device or interface fails then the second one will take over the traffic and become the active device. Configuration Replication is NOT performed from Standby unit to Active unit.
Detailed explanation-4: -To manually failover the devices you can use the command “no failover active” on the active firewall or from the standby you can use ” failover active” note that when the primary unit recovers from a failure it does not automatically assume the active role.