James Smith

<div>
? The ASA does not support Dynamic Multipoint GRE encapsulation ?<br />
<br />
You need a router.<br />
<br />
Before I'm shouted at - yes it supports VTI now, but it still does not support DMVPN.
</div>


? The ASA does not support Dynamic Multipoint GRE encapsulation ?

You need a router.

Before I'm shouted at - yes it supports VTI now, but it still does not support DMVPN.

<div>
I'd think you could create a second default router with a higher AD on the ASA. The ASA is just forwarding traffic and is not part of the DMVPN, so it shouldn't be an issue having the ASA in front of the DMVPN router. As for natting, you should be able to create NAT's to the DMVPN router for the ISP2's addressing as well on the ASA.
</div>


I'd think you could create a second default router with a higher AD on the ASA. The ASA is just forwarding traffic and is not part of the DMVPN, so it shouldn't be an issue having the ASA in front of the DMVPN router. As for natting, you should be able to create NAT's to the DMVPN router for the ISP2's addressing as well on the ASA.

<div>
I must be missing something . . . redundancy on a DMVPN spoke? I don't see the architectural difficulty. <br />
<br />
Are you running BGP throughout the DMVPN? <br />
<br />
Have fun!<br />
Steve<br />
<br />
PS . . . It's been years since I was on E-E . . . howdy Pete Long and Soulja!
</div>


I must be missing something . . . redundancy on a DMVPN spoke? I don't see the architectural difficulty.

Are you running BGP throughout the DMVPN?

Have fun!
Steve

PS . . . It's been years since I was on E-E . . . howdy Pete Long and Soulja!

<div>
@Steve<br />
<br />
Hey! Me too, I took like a 4 year hiatus.
</div>


@Steve

Hey! Me too, I took like a 4 year hiatus.

<div>
<div class="content wysiwyg-content">
Looking for a dmvpn config with two isps on single spoke behind a ASA (nat). &nbsp;<br />
Basically I have DMVPN working right now off of Primary ISP, but I would like to add the secondary ISP for failover.<br />
Has anyone done this with an ASA (Two ISP's are on the ASA) &nbsp;and a single uplink to the DMVPN router?
</div>
</div>


Looking for a dmvpn config with two isps on single spoke behind a ASA (nat).  
Basically I have DMVPN working right now off of Primary ISP, but I would like to add the secondary ISP for failover.
Has anyone done this with an ASA (Two ISP's are on the ASA)  and a single uplink to the DMVPN router?

dmvpn tunnels with two isps on single spoke using nat

A router is a networking device that forwards data packets between computer networks. Routers perform the "traffic directing" functions on the Internet. The most familiar type of routers are home and small office cable or DSL routers that simply pass data, such as web pages, email, IM, and videos between computers and the Internet. More sophisticated routers, such as enterprise routers, connect large business or ISP networks up to the powerful core routers that forward data at high speed along the optical fiber lines of the Internet backbone. Though routers are typically dedicated hardware devices, use of software-based routers has grown increasingly common.

Routers

Cisco PIX is a dedicated hardware firewall appliance; the Cisco Adaptive Security Appliance (ASA) is a firewall and anti-malware security appliance that provides unified threat management and protection the PIX does not. Other Cisco devices and systems include routers, switches, storage networking, wireless and the software and hardware for PIX Firewall Manager (PFM), PIX Device Manager (PDM) and Adaptive Security Device Manager (ASDM).