• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 303
  • Last Modified:

redundancy on cisco asa

Hi Guys,

I have two ISPs and I was wondering could i use an interface for each ISP and set one to primary and set one to secondary??

So, if the primary went down traffic could go out on the 2nd one?
0
jonathanduane2010
Asked:
jonathanduane2010
1 Solution
 
InfamusCommented:
add two different default route.

For example, if ISP1 10.1.1.1 and ISP2 172.20.1.1

ip route 0.0.0.0 0.0.0.0 10.1.1.1
ip route 0.0.0.0 0.0.0.0 172.20.1.1 10

you can also use object tracking....
0
 
giltjrCommented:
Are you using this for outbound traffic only?

Or are you hosting services that require inbound access?
0
 
jonathanduane2010Author Commented:
no, it would be for emergencies only really, so outbound traffic would be all we need....
0
Choose an Exciting Career in Cybersecurity

Help prevent cyber-threats and provide solutions to safeguard our global digital economy. Earn your MS in Cybersecurity. WGU’s MSCSIA degree program was designed in collaboration with national intelligence organizations and IT industry leaders.

 
giltjrCommented:
Then using object tracking with SLA and changing the default route.

Replace 1.1.1.1 with the IP address of ISP#1 router and 2.2.2.2 with the IP address of ISP#2's router.


route outside 0.0.0.0 0.0.0.0 1.1.1.1 1 track 1
route backup 0.0.0.0 0.0.0.0 2.2.2.2 254

sla monitor 1
type echo protocol ipIcmpEcho 1.1.1.1 interface outside
num-packets 3
frequency 10

sla monitor schedule 1 life forever start-time now

track 1 rt 1 reachability

Ref:

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00806e880b.shtml
0
 
jonathanduane2010Author Commented:
great thank you!

I am using the ASDM launcher, can i input these commands through the CLI ?
0
 
giltjrCommented:
Yes or you can scroll down some on the above link, I'm fairly sure that it shows how to do it via the ASDM.
0
 
Pete LongTechnical ConsultantCommented:
Don't forget you will need a sec plus licence!
Cisco ASA/PIX 8.x: Redundant or Backup ISP




Pete
0

Featured Post

Turn Raw Data into a Real Career

There’s a growing demand for qualified analysts who can make sense of Big Data. With an MS in Data Analytics, you can become the data mining, management, mapping, and munging expert that today’s leading corporations desperately need.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now