Solved

Cisco ASA NAT with backup

Posted on 2014-01-30
1
699 Views
Last Modified: 2014-02-09
I have a Cisco ASA 5510 running 9.1(4), presently i have a static nat port forwarding all inbound TCP 25 traffic to an internal email scanner's IP address. This is all working fine.

What i would like to know is whether it is possible to setup the ASA NAT config in such a way that if the email scanner failed the ASA would would then NAT all inbound TCP 25 traffic to another specified internal device.

I had in mined something like setting up sla monitoring to the email scanner from the ASA and if it failed to responed having a backup or lower priority NAT kickin.

I have found examples of using this method with outbound dynamic natting to two different ISP's but have had no luck finding any examples of a solution similar to what i would like to achieve.
0
Comment
Question by:nappyshock
1 Comment
 
LVL 28

Accepted Solution

by:
asavener earned 500 total points
ID: 39821980
Nope.  The load balancing feature you want isn't built into ASA.  You need another load balancing device, such as an F5 or a couple of linux boxes running haproxy.

(Most folks call it load balancing, even though it's actually failover.)
0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

If your business is like most, chances are you still need to maintain a fax infrastructure for your staff. It’s hard to believe that a communication technology that was thriving in the mid-80s could still be an essential part of your team’s modern I…
Data center, now-a-days, is referred as the home of all the advanced technologies. In-fact, most of the businesses are now establishing their entire organizational structure around the IT capabilities.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now