Whar are differences between cluster and active/active failover with cisco asa 5525-x?
Cisco ASA – Difference Between Cluster and Active/Active Failover
cisco-asafailover
Related Topic
- Active/Standby Cisco ASA failover without Sync
- Cisco ASA Failover – How to Achieve Switch Redundancy Between ASA Cluster Control Link
- Cisco ASA 5512 (OS 9.1(1)) HA failover issues
- Cisco ASA – Redundant Failover and Stateful Link Issues
- Cisco Failover Interface in Waiting State
- Cisco ASA failover monitor-interface policy
Best Answer
The active/active cluster allows you to split traffic into groups so the A node handles traffic for some networks while the B node handles traffic for the others, in the event of a failover the stable unit will handle traffic for both A&B traffic groups (assigned on a per context basis). Active/Standby cluster handle all traffic on a single node while the other is brought into use only in the event of a failure.
This is generally used when you're going to have more traffic than a single node can handle, if one of the units fails, instead of stopping all traffic destined to the failed ASA it will run in a degraded state until it is replaced. So essentially you're stretching you're hardware and actually utilizing it taking the risk of degradation if there's a failure instead of paying for a standby unit that essentially never sees any traffic pass through.
Edit: Forgot to clarify active/active is only available for multi-context mode since it would serve no purpose otherwise since you couldn't create the groups