Thanks for you answer. I'm really appreciate. (^.^) Thanks and Regards,Pipatpong
Date: Sun, 3 Oct 2010 10:03:49 +0530 Subject: Re: [OSL | CCIE_Security] High-Avaiability feature default route with SLA monitor for the ASA From: [email protected] To: [email protected] CC: [email protected] The timeout is in millisecond and frequency is in seconds. The frequency should be always greater that timeout. Default timeout - 5000 ms Default frequency - 60 s Solution should be sla monitor 1 type echo protocol ipIcmpEcho 10.4.4.4 interface outside timeout 3000 Since the task doesn't ask for num of packets and frequency, you can leave it as default. If the required timeout is greater than frequency then you may need to configure the frequency. Your solution is also correct unless the task has restriction on frequency and num of packets. But since you have mentioned "within 3 seconds" then the value should be something less than 3000 ms. May be 2500 ms. If the timeout should be 3000 ms, then the task should be like "if the ASA doesn't get reply by 3 secs, then the backup route should be installed." With regards Kings On Sun, Oct 3, 2010 at 6:43 AM, Pipatpong Samranpit <[email protected]> wrote: Hi all, I'm testing High-Avaiability feature default route with SLA monitor for the ASA in "Yusuf CCIE Security v3.0 Configuration Practice Lab" and wonder about the timeout value in SLA monior. I just a bit modify the question to cover the timeout value. If the question state that "ASA has a default route configure to 192.168.9.4. Configure a backup default route to 192.168.9.3 such that it will be installed in the routing table of ASA only if 10.4.4.4 is unreachable. Ensure that primary default route to 192.168.9.4 is preferred and alway installed, unless 10.4.4.4 become unreachable. The backup default route should be install within 3 seconds only when 10.4.4.4 is unreachble." My solution is sla monitor 1 type echo protocol ipIcmpEcho 10.4.4.4 interface outside frequency 3 num-packet 1 timeout 3000 sla monitor schedule 1 life forever start-time now!track 1 rtr 1 reachable!route outside 0 0 192.168.9.4 1 track 1route outside 0 0 192.168.9.3 2 Does my solution cover the requirement for "within 3 seconds" with "timeout 3000"? What is the appropriate timeout value to cover the requirement. Thanks and Regads, Pipatpong _______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
