Hello Frank, I'm not sure, but maybe it helps to add the 192.168.0.1 manually to the of RedundancyPreferredAddresses table, if you can use Redundancy for this module. My routing guru said, the only chance is, to define a NAT entry at the router, which is nearest to the server.
Regards Frank Elliger Abteilung Informatik HUK-COBURG Bahnhofsplatz 96444 Coburg Telefon:09561 96-1870 Telefax:09561 96-3670 E-Mail:[email protected] Internet:www.huk.de ________________________________ HUK-COBURG Haftpflicht-Unterst?tzungs-Kasse kraftfahrender Beamter Deutschlands a. G. in Coburg Reg.-Gericht Coburg HRB 100; St.-Nr. 9212/101/00021 Sitz der Gesellschaft: Bahnhofsplatz, 96444 Coburg Vorsitzender des Aufsichtsrats: Werner Strohmayr. Vorstand: Dr. Wolfgang Weiler (Sprecher), Wolfgang Fla?hoff, Stefan Gronbach, Klaus-J?rgen Heitmann, Dr. Hans Olav Her?y, J?rn Sandig. ________________________________ Diese Nachricht enth?lt vertrauliche und/oder rechtlich gesch?tzte Informationen. Wenn Sie nicht der richtige Adressat sind oder diese Nachricht irrt?mlich erhalten haben, informieren Sie bitte sofort den Absender und vernichten Sie diese Nachricht. Das unerlaubte Kopieren sowie die unbefugte Weitergabe dieser Nachricht ist nicht gestattet. This information may contain confidential and/or privileged information. If you are not the intended recipient (or have received this information in error) please notify the sender immediately and destroy this information. Any unauthorized copying, disclosure or distribution of the material in this information is strictly forbidden. ________________________________ ________________________________ Von: Wagner, Frank [mailto:[email protected]] Gesendet: Donnerstag, 11. Februar 2010 10:27 An: spectrum Betreff: [spectrum] Cisco Firewall can not be reached by Spectrum Backup from an other Network. Hello all, we are dealing with the following problem: our Cisco Firewall Service Modules (FWSM) are monitored by Spectrum Primary and Backup Pollers. These two pollers are located at different sites. Due to that - the FWSM can only be addressed by their nearest interface to the requestor - the Backup Poller uses the same IPS as the Primary Poller to address the FWSM monitoring fails, if the monitoring is switched from Primary to Backup: Example: __________________________________ Primary Poller -------------------+ IP: 10.0.0.1 FWSM IP: 192.168.0.1 +---------------------- Backup Poller (local site) __________________________________ (outside) Monitoring works fine for Primary Poller, addressing the FWSM with IP 10.0.0.1, but monitoring the FWSM by the Backup with IP 10.0.0.1 fails, because the FWSM architecture does not allow this communication. On the other hand, the Backup cannot be generated to use IP 192.168.0.1 instead of 10.0.0.1 to address the FWSM. Is there any other solution known to you than using two different outside locations for Primary and Backup Poller? FWSM1# sh ver FWSM Firewall Version 3.2(7) <context> Device Manager Version 5.2(4)F Compiled on Wed 02-Jul-08 20:04 by fwsmbld FWSM1 up 110 days 16 hours failover cluster up 305 days 15 hours Hardware: WS-SVC-FWM-1 Licensed features for this user context: Failover : Active/Active VPN-DES : Enabled VPN-3DES-AES : Enabled GTP/GPRS : Disabled BGP Stub : Disabled Configuration last modified by enable_15 at 19:57:00.242 UTC Sat Feb 6 2010 respectively: FWSM2# sh ver FWSM Firewall Version 4.0(8) <context> Device Manager Version 6.1(5)F Compiled on Thu 22-Oct-09 15:47 by fwsmbld FWSM2 up 39 days 12 hours failover cluster up 39 days 12 hours Hardware: WS-SVC-FWM-1 Licensed features for this user context: Failover : Active/Active VPN-DES : Enabled VPN-3DES-AES : Enabled GTP/GPRS : Disabled BGP Stub : Disabled Service Acceleration : Disabled Configuration last modified by enable_15 at 20:57:26.409 UTC Sat Feb 6 2010 Thanks in advance. Frank Wagner * --To unsubscribe from spectrum, send email to [email protected]<mailto:[email protected]> with the body: unsubscribe spectrum [email protected] --- To unsubscribe from spectrum, send email to [email protected] with the body: unsubscribe spectrum [email protected]
