Musafeer79
asked on
Cisco ASA redundant Link Configuration
I'm trying to configure redundant ISP link on Cisco ASA 5505 following below link.
www.cisco.com/warp/public/110/pix-dual-isp.pdf
Internet is working fine from inside to outside but i need to configure web mail access for my external users & still external users need to have VPN access.
Any suggestion on how this can be configured so VPN & webmail access works when primary link is down.
www.cisco.com/warp/public/110/pix-dual-isp.pdf
Internet is working fine from inside to outside but i need to configure web mail access for my external users & still external users need to have VPN access.
Any suggestion on how this can be configured so VPN & webmail access works when primary link is down.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
The longer answer is BGP. Obtain a /24 from an ISP, get another ISP to agree to BGP for that IP block, set them both up to BGP advertise that IP block, then configure your firewall to only use that IP block and direct traffic to an upstream router that handles the BGP sessions. That way your Internet IP number doesn't change with whichever ISP is down.