Solved

Additional Dedicated WAN for Server on ASA

Posted on 2013-01-25
4
363 Views
Last Modified: 2013-01-25
A client of mine has purchased a 2nd DSL service to be dedicated for a single server due to bandwidth considerations.

Both DSLs are to be hooked up to an ASA firewall on separate interfaces.

They want to map all inbound and outbound traffic for a specific server on the internal LAN to the 2nd DSL and leave all primary surf traffic on the 1st DSL.

Realizing that ASA doesn't support PBR, is there anyway we can make this work without buying an additional firewall/router?
0
Comment
Question by:PerimeterIT
  • 2
  • 2
4 Comments
 
LVL 20

Accepted Solution

by:
rauenpc earned 500 total points
Comment Utility
You could configure multiple contexts to handle this. It would be a bit messy to make all traffic be capable to use both contexts, but if the secondary context is dedicated to the single server it wouldnt be so bad. The server will probably need two interfaces, one with a default route for the internet, and the other with a static route(s) for the inside networks. I believe asa5510 with sec plus and higher come with 2 context licenses by default.
0
 
LVL 1

Author Comment

by:PerimeterIT
Comment Utility
5 contexts in this case, and there is not need for it to access the inside network.

How would I configure?
0
 
LVL 1

Author Comment

by:PerimeterIT
Comment Utility
0
 
LVL 20

Expert Comment

by:rauenpc
Comment Utility
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00808d2b63.shtml

http://www.cisco.com/en/US/docs/security/asa/asa90/configuration/guide/ha_contexts.html

Aside from straight configuration, read up on the limits when using multiple contexts. Depending on the code version you're running, there will be different limitations. The biggest limit is client vpn.
0

Featured Post

What Is Threat Intelligence?

Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
Cisco ASA 5505 Configuration Issue 8 47
Setup ADSL modem with Router 7 41
Cisco Switch Password ---Urgent 3 37
Network Config 9 52
We sought a budget ($5,000) firewall solution that would provide all the performance we needed with no single point of failure.  Hosting a SAAS web application in our datacenter, it was critical that we find a way to keep connectivity up and inbound…
Problem Description:   Couple of months ago we upgraded the ADSL line at our branch office from Home to Business line. The purpose of transforming the service to have static public IP’s. We were in need for public IP’s to publish our web resour…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

7 Experts available now in Live!

Get 1:1 Help Now