netflux.hashnode.devReasons to Implement an Active/Active Failover Setup in ASA Firewalls1. Why We Need Active/Active Failover In traditional Active/Standby HA, only one ASA device is active at any time, meaning 50% of hardware resources are idle. In contrast, Active/Active Failover allows both devices to actively process traffic simulta...Apr 27, 2025·4 min read
netflux.hashnode.devMastering Cisco ASA Packet Flow: Top Design Queries and Interview Preparation1. High-Level Overview When a packet arrives at a Cisco ASA interface, it goes through a defined sequence of inspections before being forwarded, dropped, NATed, or inspected further. ASA behaves as a security appliance first, router/firewall second. ...Apr 27, 2025·4 min read
netflux.hashnode.devCisco ASA High Availability: Active/Standby Setup and Troubleshooting Tips1. Overview Active/Standby failover allows a secondary ASA device to take over if the active unit fails. The active unit handles all traffic; the standby unit is synchronized and ready to take over with minimal disruption. 2. Prerequisites Identica...Apr 27, 2025·4 min read
netflux.hashnode.devDMVPN Phase 1 Explained: Essential Insights and Notes🔷 1. Overview DMVPN Phase 1 is a hub-and-spoke VPN topology: Hub (NHS) has tunnel mode gre multipoint Spokes use point-to-point GRE (tunnel destination is the hub's public IP) No direct spoke-to-spoke communication (traffic always goes through th...Apr 16, 2025·3 min read
netflux.hashnode.devEtherChannel EssentialsEtherChannel – Basics Purpose: Aggregates multiple physical links into a single logical link for better bandwidth and redundancy. Modes: PAgP (Cisco proprietary): auto, desirable modes. LACP (IEEE standard): active, passive modes. Port-Channel...Apr 14, 2025·3 min read