asked on

Cisco ASA 5540 Load Balancing

Hi - I have two ASA's (5540's) in Load Balancing with AAA and certificate authentication using ANYconnect and PKI for XP machines.

What I want to know is If I disable the load balancing from ASDM, what impact will it have on users or the config, and then how easy is it to pair them-up again in load balancing.

Many Thanks
Regards
Adam

Robert Sutton Jr

Take a look here:

https://supportforums.cisco.com/thread/2012682

adam_kan2000

ASKER

The above comment does not help at all.

Regards
Adam

Robert Sutton Jr

Basically, ASA's DO not load balance. If you are ref. to vpn clustering and load balancing then thats a bit different. One of the main purposes for this setup is for "High" availablility of your Public Ip address(es). In the event the ASA serving your public Ip fails, another ASA in the cluster will assume the Public Ip without intervening. Disabling this may have somewhat of an impact on your network if you have several VPN clients facing this Public Ip.

Here is brief tutorial and overview.
http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00805fda25.shtml

Hope this helps.

adam_kan2000

ASKER

Thank you. You have summed up my setup at work very well. I've two ASA's in VPN clustering and load balancing setup for HA. I only have 400 people connecting to them. All I want to know is if I disable the VPN load balancing from ASDM - how easy will it be to put them back together and can I have any issues pairing them-up again.

ASKER CERTIFIED SOLUTION

Robert Sutton Jr

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial

adam_kan2000

ASKER

Thank you - your answer/solution was most helpful.

Do you do any private consultancy work ? if you do - contact me on my email:adam_kan2000@hotmail.co.uk

Regards
Adam