Solved

redundancy on cisco asa

Posted on 2014-01-28
7
288 Views
Last Modified: 2014-02-14
Hi Guys,

I have two ISPs and I was wondering could i use an interface for each ISP and set one to primary and set one to secondary??

So, if the primary went down traffic could go out on the 2nd one?
0
Comment
Question by:jonathanduane2010
7 Comments
 
LVL 12

Expert Comment

by:Infamus
ID: 39814830
add two different default route.

For example, if ISP1 10.1.1.1 and ISP2 172.20.1.1

ip route 0.0.0.0 0.0.0.0 10.1.1.1
ip route 0.0.0.0 0.0.0.0 172.20.1.1 10

you can also use object tracking....
0
 
LVL 57

Expert Comment

by:giltjr
ID: 39814871
Are you using this for outbound traffic only?

Or are you hosting services that require inbound access?
0
 

Author Comment

by:jonathanduane2010
ID: 39814903
no, it would be for emergencies only really, so outbound traffic would be all we need....
0
Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

 
LVL 57

Accepted Solution

by:
giltjr earned 460 total points
ID: 39814939
Then using object tracking with SLA and changing the default route.

Replace 1.1.1.1 with the IP address of ISP#1 router and 2.2.2.2 with the IP address of ISP#2's router.


route outside 0.0.0.0 0.0.0.0 1.1.1.1 1 track 1
route backup 0.0.0.0 0.0.0.0 2.2.2.2 254

sla monitor 1
type echo protocol ipIcmpEcho 1.1.1.1 interface outside
num-packets 3
frequency 10

sla monitor schedule 1 life forever start-time now

track 1 rt 1 reachability

Ref:

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00806e880b.shtml
0
 

Author Comment

by:jonathanduane2010
ID: 39815029
great thank you!

I am using the ASDM launcher, can i input these commands through the CLI ?
0
 
LVL 57

Expert Comment

by:giltjr
ID: 39815122
Yes or you can scroll down some on the above link, I'm fairly sure that it shows how to do it via the ASDM.
0
 
LVL 57

Expert Comment

by:Pete Long
ID: 39815430
Don't forget you will need a sec plus licence!
Cisco ASA/PIX 8.x: Redundant or Backup ISP




Pete
0

Featured Post

VMware Disaster Recovery and Data Protection

In this expert guide, you’ll learn about the components of a Modern Data Center. You will use cases for the value-added capabilities of Veeam®, including combining backup and replication for VMware disaster recovery and using replication for data center migration.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Concerto Cloud Services, a provider of fully managed private, public and hybrid cloud solutions, announced today it was named to the 20 Coolest Cloud Infrastructure Vendors Of The 2017 Cloud  (http://www.concertocloud.com/about/in-the-news/2017/02/0…
This article will inform Clients about common and important expectations from the freelancers (Experts) who are looking at your Gig.
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

829 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question