ASA 5505 Dual-ISP, how??

Unanswered Question
Mar 26th, 2007


I have two DSL lines, and I want to use at the same time this ISP with a Cisco Firewall.

I have a Pix 501 but I think that is no possible to have 2 IP in the same Outside port.

Maybe with ASA 5505 is possible? How can I do it?

DSL-modem A----|................|---Server1...


DSL-modem B----|................|---PC1...

Server1 use gateway DSL-modem A

PC1... use gateway DSL-modem B

A lot of thanks.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4 (2 ratings)
abinjola Mon, 03/26/2007 - 09:49

policy based routing in not possible on ASA or what you are trying to do is not possible here on ASA

onlyamdri Mon, 03/26/2007 - 10:07

Thanks for the quick answer.

Which is the easy way to achieve the Dual-ISP protected with ASA?

Maybe 2 ASA and 1 router...


......................|--Cisco Router--Internal Net


abinjola Mon, 03/26/2007 - 10:55

well if you dont want to go for multiple context then you can certainly point the entire route to the router and then let router do policy based routing..let the router do natting as well

abinjola Mon, 03/26/2007 - 10:07

why dont you buy a cheap router and point the gateway for the FW to it...let the router do the PBR for does it sound..?

cpembleton Mon, 03/26/2007 - 10:16

You could do it for with an ASA 5510 using multiple contexts. Would be cheaper to just buy another 501 and each DSL would have it's own firewall.

Could also put a router between your firewall and DSL modems and let it do the Policy based routing. Then you could configure it to fail over to the other DSL if the primary goes down.



Please rate if this helps!

onlyamdri Tue, 03/27/2007 - 03:50

I think that is the best solution:

a)Buy ASA 5510 (expensive).

b)Buy another Pix 501 (cheap).

Two ISP must work at the same time.



This Discussion