Link to home
Start Free TrialLog in
Avatar of clctechs
clctechsFlag for United States of America

asked on

Cisco ASA 5510 Route Problems

I am trying to accomplish the following and keep getting the error "Cannot add route, connected route exists"

I have 2 Inside Interfaces labeled (inside, inside_2)
I have 2 dual ISP WAN Interfaces (CCCharterWAN, CCTelepacificWAN)

I am trying to have "inside" go out the "CCCharterWAN"
and
"inside_2" go out "CCTelepacifiicWAN"

What am I missing??
ASKER CERTIFIED SOLUTION
Avatar of David Akinsanya
David Akinsanya
Flag of United States of America image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of lruiz52
lruiz52
Flag of United States of America image
Unfortunately the asa does not support the setup you are describing. The asa only supports dual ISP failover not load balancing. Take a look at the link below for a clear explanation and possible alternatives;

https://supportforums.cisco.com/docs/DOC-13015
Avatar of clctechs
clctechs
Flag of United States of America image

ASKER

I don't need load balancing. I need each inside and inside_2 interface go out separate WAN interfaces.
Avatar of InteraX
InteraX
Flag of United Kingdom of Great Britain and Northern Ireland image
You could do this with 2 contexts which makes the firewall behave as 2 different firewalls.

In single context mode, there is 1 routing table. You will then only have 1 default route out which all traffic will go.

The 5510 supports 2 different contexts without additional purchase. In multiple context mode, you have a routing table per context, BUT you will then loose a load of other features. See the below taken from the 9.1 configuration guide.

Multiple context mode does not support the following features:
• RIP
• OSPFv3. (OSPFv2 is supported.)
• Multicast routing
• Threat Detection
• Unified Communications
• QoS
• Remote access VPN. (Site-to-site VPN is supported.)