asked on

ASA 5520 with two internet feeds

Hi,

Can the ASA 5520 handle two different internet feeds? This is not for Load balancing but we want one client to have a 1MB link and the rest of the servers to have another 20mb link.

So --

|||||||||COLO NETWORK||||||||||
| |
1mb feed 20mb feed
| |
|||||||||||ASA 5520|||||||||||||
| |
!!|DMZ1/VLAN1||| |||DMZ2/VLAN2|||

Thanks

Grant

Les Moore

Short answer is no.
Longer answer is that the ASA can handle two feeds but only for failover and not for load sharing.
The issue is that there can only be one default route at a time.

grantbl

ASKER

ok. I have been told the PIX can do it so would have thought the ASA could as well.

Les Moore

PIX can't do it either.
What you are looking for is Policy Based Routing which is not supported on either platform.
The only way I can think of to make it work would be to run the ASA in multiple context mode which creates 2 independent "virtual" firewalls, each with their own routing and access rules.
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00808d2b63.shtml

grantbl

ASKER

mmm fair enough. Maybe the NOC guys will full out it when they come up with the solution for the pix. Pity throws that plan out the Windows as if we use the conext mode we cannot use VPNs....

Thanks anyways.

ASKER CERTIFIED SOLUTION

Les Moore

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial

grantbl

ASKER

yeah we are moving from one Data centre to another and the PIX aint ours but will be buying the ASA's.

But hang on I have a 506E lying about :).

Computer101

Forced accept.

Computer101
EE Admin