Default Route or Policy route

All,

I am trying to figure out how to send my voice traffic out the back up interface.  Currently, when sip is connected to our Server USEAMAX2k, it works over the back up interface, but sends the RTP traffic over the outside interface.  I need that traffic to go out the backup interface.  Also, a static is configured using one of the assigned IPs of that interface, Would their be an issue with the static route? and should I use a policy based routing?  Mind you, we are trying to setup Fonolo with Altigen Max2k Server. This may also affect users who are remote and have phones setup.

We have 2 ISPS setup on 1 ASA 5510.

static (Inside,Backup) X5.XXX.157.157 USEMAX2k netmask 255.255.255.255

object-group service Voice_Ports
 service-object udp eq sip
 service-object tcp-udp range 49664 49723
 service-object tcp eq 10025
 service-object tcp range 10027 10029
 service-object tcp eq 10032
 service-object tcp eq 10040
 service-object tcp eq 10050
 service-object tcp eq 10064
 service-object tcp range 10080 10081
 service-object tcp eq 5061
 service-object tcp eq h323
 service-object udp eq 10060
 service-object udp eq tftp
 service-object tcp eq sip
 service-object tcp source range 10000 10020 range 10000 10020
 service-object udp range 10000 10020
TreyCarrIT DirectorAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

mikebernhardtCommented:
I'm not familiar with the specific traffic or applications, but I do know routing. If you want to force traffic of any kind over the backup interface, you have to use policy routing. But bear in mind that this does not force the return traffic to use that interface unless you control both ends of the link and use policy routing on the other side also.
0
TreyCarrIT DirectorAuthor Commented:
OK, so would i need a routing statement to route the traffic out the backup interface?  

ASA(config)#static (isp2,inside) 66.XXX.XXX.0 66.XXXXXX.0 netmask 255.255.255.0

I tried this command, and it did not work.
0
mikebernhardtCommented:
That's a static route. I'm not sure you can do policy routing in an ASA. here's a document from a few years back that suggests a possible workaround for you- it's essentially allowing you to create a different default routes based on the protocol but it may not work for you.
https://supportforums.cisco.com/docs/DOC-6069

Here are some other postings I found that may help you:
https://learningnetwork.cisco.com/thread/27890
https://supportforums.cisco.com/thread/2194754
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
TreyCarrIT DirectorAuthor Commented:
All, I couldnt complete this config without a router. I had to purchase a router to do what I needed to do.   I am rewarding Mike the points.
0
TreyCarrIT DirectorAuthor Commented:
Mike helped me see the limitations of the ASA.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Cisco

From novice to tech pro — start learning today.