Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
732
Views
0
Helpful
2
Replies

ASA and vpn load balancing

eric.loiseau
Level 1
Level 1

‎04-05-2007 05:51 AM - edited ‎02-21-2020 02:57 PM

Hi,

I am configuring 2 ASA5540 for internet trafic inside to outside ,

outside to inside (web,smtp) but also vpn load balancing for client to site , site to site and webvpn.

In the doc I can configure them for internet trafic as Active/Standby or Active/active.

for vpn : I can use vpn load balancing

But no information if I want to use the active/passif and vpn load balancing together.

Any thoughts on which way to go? what is the best thing to do ?

Regards

Labels:
0 Helpful
2 Replies 2

brispin
Level 1
Level 1

‎04-11-2007 06:18 AM

I think it is better to use Active/Active for VPN load balancing because in such a config both of the devices can share the load among themselves as compared to Active/standby.

0 Helpful

ionalonso
Level 1
Level 1
In response to brispin

‎02-18-2010 12:48 AM

Hi,

I think that you cannot use an Active/Active configuration for VPN connections as it is stated on Cisco's documentation: "Note: VPN failover is not supported on units that run in multiple context mode as VPN is not supported in multiple context. VPN failover is available only for Active/Standby Failover configurations in single context configurations" available at http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080834058.shtml

Hope it helps

0 Helpful
Customers Also Viewed These Support Documents