[memo] Using PIX Firewall Failover

pix 
    

        Step 13   After enabling Stateful Failover, use the show failover command and
           additional information is provided as follows:

show failover

Failover On
Cable status: Other side powered off
Reconnect timeout 0:00:00
Poll frequency 15 seconds
        This host: primary - Active
                Active time: 510 (sec)
                Interface 4th (172.16.1.1): Normal (Waiting)
                Interface intf3 (192.168.3.1): Normal (Waiting)
                Interface intf2 (192.168.2.1): Normal (Waiting)
                Interface outside (192.168.1.1): Normal (Waiting)
                Interface inside (10.1.1.1): Normal (Waiting)
        Other host: secondary - Standby
                Active time: 0 (sec)
                Interface 4th (172.16.1.2): Unknown (Waiting)
                Interface intf3 (192.168.3.2): Unknown (Waiting)
                Interface intf2 (192.168.2.2): Unknown (Waiting)
                Interface outside (192.168.1.2): Unknown (Waiting)
                Interface inside (10.1.1.2): Unknown (Waiting)
 
Stateful Failover Logical Update Statistics
        Link : 4th
        Stateful Obj    xmit       xerr       rcv        rerr
        General         0          0          0          0
        sys cmd         0          0          0          0
        up time         0          0          0          0
        xlate           0          0          0          0
        tcp conn        0          0          0          0
        udp conn        0          0          0          0
        ARP tbl         0          0          0          0
        RIP Tbl         0          0          0          0
 
        Logical Update Queue Information
                        Cur     Max     Total
        Recv Q:         0       0       0
        Xmit Q:         0       0       0
 

The items in the top row of the "Stateful Failover Logical Update Statistics" 
section of the show failover command are as follows:

Stateful Obj—PIX Firewall stateful object 
xmit—Number of transmitted packets to the other unit
xerr—Number of errors that occurred while transmitting packets to the other unit
rcv—Number of received packets
rerr—Number of errors that occurred while receiving packets from the other unit


The items in the first column provide an object static count for each statistic:
General—Sum of all stateful objects
sys cmd—Logical update system commands; for example, LOGIN and Stay Alive
up time—Up time, which the active unit passes to the standby unit
xlate—Translation information
tcp conn—CTCP connection information
udp conn—Dynamic UDP connection information 
ARP tbl—Dynamic ARP table information
RIF Tbl—Dynamic router table information 


The items in the "Logical Update Queue Information" list the current, maximum, and
total number of packets in the receive (Recv) and transmit (Xmit) queues.

    

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_62/config/failover.htm